Module: Hooks::Security

Defined in:: lib/hooks/security.rb

Constant Summary collapse

DANGEROUS_CLASSES = List of dangerous class names that should not be loaded as handlers for security reasons. These classes provide system access that could be exploited if loaded dynamically. Returns: (Array<String>) — Array of dangerous class names

%w[
  File Dir Kernel Object Class Module Proc Method
  IO Socket TCPSocket UDPSocket BasicSocket
  Process Thread Fiber Mutex ConditionVariable
  Marshal YAML JSON Pathname
].freeze