diff options
| author | Christian Clason <c.clason@uni-graz.at> | 2024-02-11 18:29:08 +0100 |
|---|---|---|
| committer | Christian Clason <c.clason@uni-graz.at> | 2024-02-11 20:09:43 +0100 |
| commit | 46390635cd3adf6c6ac4f34914ae93777b8fc15a (patch) | |
| tree | 91aabac9909afbe41be9436aec014e68c9d03dff /src | |
| parent | ed1b66bd998b98ee8cf76b5a23c323352588dd56 (diff) | |
| download | rneovim-46390635cd3adf6c6ac4f34914ae93777b8fc15a.tar.gz rneovim-46390635cd3adf6c6ac4f34914ae93777b8fc15a.tar.bz2 rneovim-46390635cd3adf6c6ac4f34914ae93777b8fc15a.zip | |
vim-patch:6d91227267a5
runtime(gpg): Mark dangerous use-embedded-filename with WarningMsg
The syntax highlighter is likely to encourage people to use the listed
commands.
But `use-embedded-filename` is a dangerous option that can cause GnuPG
to write arbitrary data to arbitrary files whenever GnuPG encounters
malicious data.
GnuPG upstream explicitly warns against using this option:
https://dev.gnupg.org/T4500
https://dev.gnupg.org/T6972
However, since this is a valid option, we cannot just drop it from the
syntax script. Instead, let's mark it with the WarningMsg highlighting
to make it obvious, that this option is different (and should not be
used for security reasons).
closes: vim/vim#13961
https://github.com/vim/vim/commit/6d91227267a5f7e21fc9b30443687618e92751bf
Co-authored-by: Christian Brabandt <cb@256bit.org>
Co-authored-by: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
Diffstat (limited to 'src')
0 files changed, 0 insertions, 0 deletions