|
The best way to integrate Lua with Firefox/Mozilla/xulrunner is via
XPCOM, which is an open source cross platform version of COM. There is a Lua COM library that would be a good starting point, but integrating a scripting language with XPCOM or COM is difficult work, bordering on rocket science. The incredible Mark Hammond integrated COM and Python (the Python win32com module), and he also integrated XPCOM and Python (the mozilla pyxpcom extension). The pyxpcom effort to integrate Python into Mozilla resulted in cleaning up the Mozilla code in ways that will make it easier to integrate Lua in the same way. http://www.mozilla.org/catalog/architecture/xpcom/pyxpcom/ -Don Jeremy Darling wrote: Well, first you need to follow the _javascript_ model and disable the io library completely. This will at least show that you attempted to secure your module. Try to find the other libraries that could cause a problem and disable them as well (in fact anything outside of the core lib shouldn't be active IMHO). Then offer up the "Developer" version with things like the debug library enabled. Finally, create a module yourself that will be surfaced that allows you to do things like document.write and document.location = bla bla bla. |