Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Disable hooks and shell by default #142

Open
brikis98 opened this issue Nov 16, 2023 · 0 comments
Open

Disable hooks and shell by default #142

brikis98 opened this issue Nov 16, 2023 · 0 comments
Labels
enhancement New feature or request

Comments

@brikis98
Copy link
Member

Describe the solution you'd like
Right now, the default in boilerplate is to allow boilerplate templates to run arbitrary scripts via the hooks and shell feature. This was fine where all the templates were things we created internally, but if we open source boilerplate, and there are public templates, these features should be disabled by default to create a better security posture.

Additional context
This would be a breaking change. We'd need to switch the --disable-hooks and --disable-shell flags to --enable-hooks and --enable-shell.
@brikis98 brikis98 added the enhancement New feature or request label Nov 16, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@brikis98