IRC channel logs


back to list of logs

<mekeor[m]>rekado: could any channel author write (system* "rm" -rf" "/") in a scheme-file.scm and destroy the server? hmm is there any nice scheme-way to only eval package-declarations or so? or do i should i e.g. run a docker container containing a guix system with a hpcguix-web service for each channel?
<civodul>mekeor[m]: yes, the assumption is that the channel itself is trusted code
<civodul>there was work to mitigate that:
<civodul>but in the end, channels provide software, so you have to trust it one way or another
***rekado_ is now known as rekado