The blacklist-based solution can stop nothing as you showed, so I think we cannot do much except writing it in the documentation.
Regards, Yihui -- Yihui Xie <xieyi...@gmail.com> Phone: 515-294-2465 Web: http://yihui.name Department of Statistics, Iowa State University 2215 Snedecor Hall, Ames, IA On Sat, Oct 20, 2012 at 9:41 PM, Scott Kostyshak <skost...@lyx.org> wrote: > > You mean searching the chunk for the word "system"? I agree that it > would be useless: > first <- "sy" > second <- "stem" > do.call(paste(first,second,sep=""),list(command="echo I still have > access >> tempfile.txt")) > > What if knitr overrides the "system" function before processing the chunk? > My guess is that it's not a good idea: there is probably a way around > it, there are many other functions that would need to be blacklisted > and overridden, and it would probably cause more bugs than security. > But I wanted to throw it out there. > > Thanks, > > Scott