This repository was archived by the owner on Jul 7, 2025. It is now read-only.
This repository was archived by the owner on Jul 7, 2025. It is now read-only.
Do not leak username to untrusted modules #751
Description
We must not leak the filesystem structure when the code is running inside a sandboxed environment. The Checker App files are usually in the user's home directory. The full path includes the username, which is sensitive information we should not leak to untrusted modules. The modules should have access only to the path relative to the project (module) root.
Current path:
file:///Users/bajtos/Library/Caches/app.filstation.desktop/sources/spark/main.js
Proposed path:
file:///ZINNIA/main.js
file://C:\ZINNIA\main.js