clone/logseq
1
0
Fork 0
mirror of https://github.com/logseq/logseq.git synced 2026-04-24 22:25:01 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add a relevant description about security practice for resources

Browse Source
This commit is contained in:
Gabriel Horner
2023-06-28 15:11:08 -04:00
parent f80568eef7
commit 71fa4cb6f4
1 changed files with 7 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
docs/dev-practices.md
View File

@@ -316,6 +316,13 @@ inspectors for block/page data and AST.
Since the desktop app is built with Electron, a full set of Chromium developer
tools is available under the menu `View > Toggle Developer Tools`. Handy tools
include a JS console and HTML inspector.
## Security Practices
* Our builds should not include unverified, third-party resources as this opens
up the app to possibly harmful injections. If a third-party resource is
included, it should be verified against an official distributor. Use
https://github.com/logseq/logseq/pull/9712 as an example to include a third
party resource and not the examples under resources/js/.
## FAQ