From: Joey Hess Date: Wed, 5 Nov 2008 19:58:35 +0000 (-0500) Subject: response X-Git-Tag: 3.15~403^2~4 X-Git-Url: http://git.tremily.us/?a=commitdiff_plain;h=b609ae76edf4d18f87643dde3cb6940f8b4f33f1;p=ikiwiki.git response --- diff --git a/doc/plugins/po.mdwn b/doc/plugins/po.mdwn index ba293f262..6d468f07e 100644 --- a/doc/plugins/po.mdwn +++ b/doc/plugins/po.mdwn @@ -231,6 +231,10 @@ Security checks > I've checked in a change fixing that. --[[Joey]] - `refreshpofiles` and `refreshpot` create new files; this may need some checks, e.g. using `IkiWiki::prep_writefile()` + > Yes, it would be ideal to call `prep_writefile` on each file + > that they write, beforehand. This way you'd avoid symlink attacks etc to the + > generated po/pot files. I haven't done it, but it seems pretty trivial. + > --[[Joey]] - Can any sort of directives be put in po files that will cause mischief (ie, include other files, run commands, crash gettext, whatever).