Deleted user

+1

Hi @oprudkyi this is not just a problem with the `file()` function, providers also have unrestricted access to the local environment. You should not run untrusted code.

@oprudkyi currently, OpenTofu has no isolation for Tofu code, nor does it have any isolation for provider binaries. Adding a singular function won't fix this as providers can also introduce...

Why would a containerized run expose host env variables in the containers? I haven't seen any container engine that does that. Besides, you will need to exclude the local provider,...

So, if I understand your use case correctly, you want to run untrusted .tf code with sensitive provider credentials. Short term you may want to look into AppArmor or SELinux...

@mm-chia from what I understand, it wouldn't because @oprudkyi would like to make sure that the credentials `tofu` needs for providers (e.g. AWS) through environment variables are not readable by...

I don't have permission to open issues in https://github.com/olijeffers0n/push_receiver

I would suggest changing the body of `glfwIsInitialized` to the following; ```c GLFWAPI int glfwIsInitialized(void) { return _glfw.initialized; } ``` This both better fits code styling and removes some confusing...

👇 Click on the image for a new way to code review - Make big changes easier — review code in small groups of related files - Know where to...

hello Cutgead I tried your build. It didn't bypass Internet censorship. Only two solutions 1. something like https://github.com/UjuiUjuMandan/EhViewer 2. Integrate DPI