mirror of
https://github.com/denoland/deno.git
synced 2024-12-22 15:24:46 -05:00
5504acea67
This replaces `--allow-net` for import permissions and makes the security sandbox stricter by also checking permissions for statically analyzable imports. By default, this has a value of `--allow-import=deno.land:443,jsr.io:443,esm.sh:443,raw.githubusercontent.com:443,gist.githubusercontent.com:443`, but that can be overridden by providing a different set of hosts. Additionally, when no value is provided, import permissions are inferred from the CLI arguments so the following works because `fresh.deno.dev:443` will be added to the list of allowed imports: ```ts deno run -A -r https://fresh.deno.dev ``` --------- Co-authored-by: David Sherret <dsherret@gmail.com> |
||
---|---|---|
.. | ||
__test__.jsonc | ||
add.ts | ||
deno.json | ||
frozen_new_dep_cache.out | ||
frozen_new_dep_dynamic_http.out | ||
frozen_new_dep_dynamic_jsr.out | ||
frozen_new_dep_dynamic_npm.out | ||
frozen_new_dep_jsr_cache.out | ||
frozen_new_dep_jsr_run.out | ||
frozen_new_dep_run.out | ||
frozen_package_json_changed.out | ||
frozen_package_json_changed_install.out | ||
http-dynamic.ts | ||
jsr-dynamic.ts | ||
jsr.ts | ||
jsr2.ts | ||
no_lockfile_run.out | ||
package.json | ||
sub-dynamic.ts | ||
sub.ts | ||
update_lockfile.out |