safer_rails_console icon indicating copy to clipboard operation
safer_rails_console copied to clipboard

Published 20 hours ago verified publisher icon salsify

feat: redis sandboxing

Open mileszim opened this issue 3 years ago • 4 comments

This adds Redis sandboxing to safer_rails_console.

It allows for reading, but any attempt to call a write method raises an error

mileszim avatar Aug 28 '22 08:08 mileszim

reminder to self: add this too https://github.com/redis-rb/redis-client

mileszim avatar Aug 30 '22 22:08 mileszim

@will89 @mattsmith0308 @jturkel any updates?

mileszim avatar Jan 12 '23 11:01 mileszim

@gremerritt - Mind taking a look at this PR?

jturkel avatar Jan 12 '23 16:01 jturkel

Re: the scripting commands, let's go forward with what you have currently (ie. blocking scripting commands). Can you add a config-level toggle to disable the new redis support though? We'll likely come back to this and add some additional scripting configuring support, but I don't want to block you from getting this out either.

gremerritt avatar Jan 12 '23 19:01 gremerritt