Re: [JS-internals] Taint analysis in SpiderMonkey

Sat, 10 Aug 2013 12:45:22 -0700 

Jim Blandy wrote:
From what our security folks tell me, even taint analyses that sometimes drop labels due to simplifications like failing to taint the PC are still valuable. The code under analysis isn't hostile, 

What's the threat model? Accidental leaks?

/be
_______________________________________________
dev-tech-js-engine-internals mailing list
dev-tech-js-engine-internals@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-js-engine-internals






















					Reply via email to