DSC icon indicating copy to clipboard operation
DSC copied to clipboard
verified publisher icon PowerShell

File/folder permissions checks

Open SteveL-MSFT opened this issue 1 year ago • 2 comments

Summary of the new feature / enhancement

Anywhere that dsc reads a file, we should check that the file and it's containing directory isn't world writable. If so, we should error and not allow as it is not trusted.

Proposed technical implementation details (optional)

No response

SteveL-MSFT avatar Apr 27 '24 19:04 SteveL-MSFT

Probably, such strict mode should be opt-in. Otherwise users, who just want to run their configs, will be getting a lot of roadblocks.

anmenaga avatar May 01 '24 22:05 anmenaga

We can have it opt-out

SteveL-MSFT avatar May 23 '24 03:05 SteveL-MSFT