Hacker News new | ask | show | jobs
by pcarion 3908 days ago
Isn't that a TERRIBLE idea as you can run:

var fs = require('fs'); var content = fs.readFileSync('/etc/passwd'); console.log(content+'');

or look into any other file?
2 comments
boucher 3908 days ago
You can, and you should feel free to give it a shot. Everything is running in its own sandbox, so there's no real issue with that.
link
drhayes9 3908 days ago
That was one of the first things I tried when I found the service: https://tonicdev.com/drhayes/fun-with-fs
link