You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
we've never claimed that it is secure for running untrusted code. Scripts can easily cause denial of service by exhausting all memory, or by hash flooding.
It seems like executing arbitrary starlark code could crash a system, but other than that, there should be no way to escape the execution environment. Is this expectation correct?
The safety expectations also sound different from what https://github.com/google/cel-go offers, so it would be great if this could be elaborated in README.
The text was updated successfully, but these errors were encountered:
starlark/README.md
Lines 36 to 37 in ce1fdb0
The readme says:
google/starlark-go#241 (comment) says:
It seems like executing arbitrary starlark code could crash a system, but other than that, there should be no way to escape the execution environment. Is this expectation correct?
The safety expectations also sound different from what https://github.com/google/cel-go offers, so it would be great if this could be elaborated in README.
The text was updated successfully, but these errors were encountered: