From b609ae76edf4d18f87643dde3cb6940f8b4f33f1 Mon Sep 17 00:00:00 2001 From: Joey Hess Date: Wed, 5 Nov 2008 14:58:35 -0500 Subject: response --- doc/plugins/po.mdwn | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/doc/plugins/po.mdwn b/doc/plugins/po.mdwn index ba293f262..6d468f07e 100644 --- a/doc/plugins/po.mdwn +++ b/doc/plugins/po.mdwn @@ -231,6 +231,10 @@ Security checks > I've checked in a change fixing that. --[[Joey]] - `refreshpofiles` and `refreshpot` create new files; this may need some checks, e.g. using `IkiWiki::prep_writefile()` + > Yes, it would be ideal to call `prep_writefile` on each file + > that they write, beforehand. This way you'd avoid symlink attacks etc to the + > generated po/pot files. I haven't done it, but it seems pretty trivial. + > --[[Joey]] - Can any sort of directives be put in po files that will cause mischief (ie, include other files, run commands, crash gettext, whatever). -- cgit v1.2.3