Bug #503
[aur] Executes untrusted code during parsing.
Status:
not-a-bug
Priority:
bug
Category:
-
Assignee:
-
% Done:
0%
Description
This needs to be done in an restricted shell. See how namcap does it.
History
Updated by lukeshu over 5 years ago
- Status changed from open to not-a-bug
When it finally gains support for AUR4 (#986), this is trivially solved by using the .SRCINFO file instead.