If security principles are important they should be on a deny-default basis with... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		whizzter 5 months ago \| parent \| context \| favorite \| on: Deno 2.4 If security principles are important they should be on a deny-default basis with allow-lists rather than the other way around. If the deno runtime implements the fetch module itself, then post-resolution checking definitely should be done though. It's more of an bug though than a principled security lapse.

bugtodiffer 5 months ago [–]

The thing is that this applies to all parts of the sandbox https://secfault-security.com/blog/deno.html

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact