There isn't really a secure way to do this without somehow parsing all the Ruby code used in Haml, which is unfeasible. You could, however, use's why's excellent freaky freaky sandbox <http://code.whytheluckystiff.net/sandbox/>to encapsulate the entire environment.
- Nathan On 11/1/07, Rich Morin <[EMAIL PROTECTED]> wrote: > > > While speculating about the idea of using HAML as the markup language > for a wiki, it occurred to me that it might be useful to have > something more delicate than :suppress_eval to say (for example) what > methods should be allowed. Is there a reasonable way to do this? > > -r > > > > > --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Haml" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/haml?hl=en -~----------~----~----~----~------~----~------~--~---
