[jslint] Re: ANN: JSLint Reporter (Node.js wrapper)
- --- In firstname.lastname@example.org, mathew <meta404@...> wrote:
> Seriously, though, you could provide a digital signature which could beA digital signature does not make things less worse.
It is false security.
> Node.js has a built-in feature for running scripts “sandboxed” [...]I agree that this would be the ideal solution - and looking at your
> The Node.js feature I mentioned is in the VM module. [...] If you use
> those features (and use them correctly, which is not trivial), it
> becomes completely safe to download and run any script
LintServer*, it appears you've already solved this issue (I must have
misunderstood you before):
This appears to work just fine:
(untrusted.js throws exceptions since it doesn't have access to require)
It should be rather straightforward to add this to JSLint Reporter then.