On Feb 19, 2014, at 12:28 PM, Corey Richardson <[email protected]> wrote:
> This is a pretty bad idea, allowing *arbitrary unreviewed anything* to
> run on the buildbots. All it needs to do is remove the contents of its
> home directory to put the builder out of commission, afaik. It'd
> definitely be nice to have it run tidy etc first, but there needs to
> be a check tidy or any of its deps.
This is a very good point. And it could do more than that too. It could use a
local privilege escalation exploit (if one exists) to take over the entire
machine. Or it could start sending out spam emails. Or maybe it starts mining
bit coins.
Code should not be run that is not at least read first by a reviewer.
-Kevin
_______________________________________________
Rust-dev mailing list
[email protected]
https://mail.mozilla.org/listinfo/rust-dev
