denoland-deno

mirror of https://github.com/denoland/deno.git synced 2024-11-21 15:04:11 -05:00

History

Bartek Iwańczuk 5504acea67 feat: add `--allow-import` flag (#25469 ) This replaces `--allow-net` for import permissions and makes the security sandbox stricter by also checking permissions for statically analyzable imports. By default, this has a value of `--allow-import=deno.land:443,jsr.io:443,esm.sh:443,raw.githubusercontent.com:443,gist.githubusercontent.com:443`, but that can be overridden by providing a different set of hosts. Additionally, when no value is provided, import permissions are inferred from the CLI arguments so the following works because `fresh.deno.dev:443` will be added to the list of allowed imports: ```ts deno run -A -r https://fresh.deno.dev ``` --------- Co-authored-by: David Sherret <dsherret@gmail.com>	2024-09-26 01:50:54 +00:00
..
error_version_after_subpath	feat: add `--allow-import` flag (#25469 )	2024-09-26 01:50:54 +00:00
__test__.jsonc	feat: add `--allow-import` flag (#25469 )	2024-09-26 01:50:54 +00:00

Bartek Iwańczuk 5504acea67

feat: add --allow-import flag (#25469 )

This replaces `--allow-net` for import permissions and makes the
security sandbox stricter by also checking permissions for statically
analyzable imports.

By default, this has a value of
`--allow-import=deno.land:443,jsr.io:443,esm.sh:443,raw.githubusercontent.com:443,gist.githubusercontent.com:443`,
but that can be overridden by providing a different set of hosts.

Additionally, when no value is provided, import permissions are inferred
from the CLI arguments so the following works because
`fresh.deno.dev:443` will be added to the list of allowed imports:

```ts
deno run -A -r https://fresh.deno.dev
```

---------

Co-authored-by: David Sherret <dsherret@gmail.com>

2024-09-26 01:50:54 +00:00

error_version_after_subpath feat: add --allow-import flag (#25469 ) 2024-09-26 01:50:54 +00:00

__test__.jsonc feat: add --allow-import flag (#25469 ) 2024-09-26 01:50:54 +00:00