For the information of people who read this issue in the future.

It is mentioned above that some developers won't use Geany as root because of 
the risks.  But it was not explained what the risk is.

The risk is because, as Geany is an IDE, it has the capability to run random 
commands, and as it has a plugin interface, it can run random code.  If a root 
instance of Geany was to use the user configuration it could run, as root, 
commands or code installed as user.  This could be any rubbish a user was 
experimenting with, or it could be malicious code installed with user 
privileges.  Running user code as root is an archetypal  privilege escalation 

You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:

Reply via email to