-
Type:
Enhancement
-
Resolution: Fixed
-
Priority:
P3
-
Affects Version/s: None
-
Component/s: core-libs
-
b82
-
Verified
ScriptEngine.eval gets you a null codebase. There is no way to grant permissions targeted to a script executed that way.
This is a requirement for nodejar project (actually for any runtime composed of java + js files).
Without a well identified codebase, no way to properly build a security story.
This is a requirement for nodejar project (actually for any runtime composed of java + js files).
Without a well identified codebase, no way to properly build a security story.