lua-users home
lua-l archive

[Date Prev][Date Next][Thread Prev][Thread Next] [Date Index] [Thread Index]


On Fri, 2 Dec 2022 at 23:46, Sean Conner <> wrote:

>   Also, malicious code could always modify package.path and package.cpath to
> include the current directory.

(Not properly sandboxed) RUNNING malicious code does not have to
resort to these to wreak havoc.