Mercurial > vim
view configure @ 34331:deb659fd4c5a
runtime(gpg): Mark dangerous use-embedded-filename with WarningMsg
Commit: https://github.com/vim/vim/commit/6d91227267a5f7e21fc9b30443687618e92751bf
Author: Christian Brabandt <cb@256bit.org>
Date: Sun Feb 11 18:19:45 2024 +0100
runtime(gpg): Mark dangerous use-embedded-filename with WarningMsg
The syntax highlighter is likely to encourage people to use the listed
commands.
But `use-embedded-filename` is a dangerous option that can cause GnuPG
to write arbitrary data to arbitrary files whenever GnuPG encounters
malicious data.
GnuPG upstream explicitly warns against using this option:
https://dev.gnupg.org/T4500
https://dev.gnupg.org/T6972
However, since this is a valid option, we cannot just drop it from the
syntax script. Instead, let's mark it with the WarningMsg highlighting
to make it obvious, that this option is different (and should not be
used for security reasons).
closes: #13961
Co-authored-by: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
Signed-off-by: Christian Brabandt <cb@256bit.org>
author | Christian Brabandt <cb@256bit.org> |
---|---|
date | Sun, 11 Feb 2024 18:30:03 +0100 |
parents | a1ca6778da49 |
children |
line wrap: on
line source
#! /bin/sh # This is just a stub for the Unix configure script, to provide support for # doing "./configure" in the top Vim directory. cd "${SRCDIR:-src}" && exec ./configure "$@"