Re: ELPA package submission: buffer-env

[Augusto Stoffel]

On Mon, 28 Feb 2022 at 14:40, Stefan Monnier <monnier@iro.umontreal.ca> wrote:

> The default value for `buffer-env-command` is a gaping security hole, tho.
> Any hope we can make this a bit less dangerous?

I think it's already made sufficiently tame: before running any given
version of an .envrc script, you have to explicitly say yes.  Then a
hash of the script contents is saved in a custom variable, so the second
time you run the same script you don't need to confirm.

I copied that idea from the direnv program, so I want to believe that
any security holes should be due to bad implementation rather than a bad
concept.