|
|
|
|
|
|
by PoignardAzur
1523 days ago
|
|
|
There's currently talks about sandboxing proc macros, install scripts and build scripts. It would be nowhere near enough to make it safe to download untrusted dependencies, but it would at least stop the most trivial forms of attack. Sandboxed dependencies with user-specified capabilities are a very, very long way away, if they ever happen. |
|
|