@Edward You're right - unknown html files, unlike safer PDF file, images, word documents, etc., are a security risk and people should not 'open/run' by double clicking on a html file willy-nilly.
For instance, when I went through Brian's example *in notepad first, *just to make sure... But I'm a web developper, so I could recognized the imports he made as standard bootstrap from known 'content-delivery-networks' or "CDN" which are harmless and expected. *So yeah, people should not open those if they are not sure of having confidence in them like I did.* (But some html file is still less dangerous than a python script, or a leoscript that is ran (CTRL+B). because those have network AND full file read/write capabilities all over your drives, unlike a html file in a browser who can only do malignant stuff in your bookmarks, cookies, open / redirect to phishing URLs etc and cannot read arbitrary files.) But like Thomas pointed out, the more common and dangerous stuff are contributions to popular open-source repositories that are then compiled in sites/software all over the place! :O @Brian Examples are coming soon!! Félix On Monday, September 8, 2025 at 4:04:06 PM UTC-4 [email protected] wrote: > Here's the bigger threat - > > > https://it.slashdot.org/story/25/09/08/1843235/hackers-hijack-npm-packages-with-2-billion-weekly-downloads-in-supply-chain-attack?utm_source=rss1.0mainlinkanon&utm_medium=feed > > On Monday, September 8, 2025 at 5:30:44 AM UTC-4 Edward K. Ream wrote: > >> On Mon, Sep 8, 2025 at 12:09 AM Félix <[email protected]> wrote: >> >> I've written the converter, and the javascript to allow navigation in the >>> outline (expand collapse, etc...) >> >> >> What happens if someone replaces your javascript with malicious code and >> distributes the resulting .html file? >> >> Edward >> > -- You received this message because you are subscribed to the Google Groups "leo-editor" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion visit https://groups.google.com/d/msgid/leo-editor/ba89bbae-1e85-4b4b-bdb1-67f9f1709538n%40googlegroups.com.
