stackoom
  简体   繁体   中英

How do I run/include/require remote javascript safely?

 原文  2019-01-15 19:18:05       javascript/ node.js

Question

Suppose I have an API for my bakery. I want to receive my baking instructions from a remote URL (ex: a gist)

class Bakery{
    static bake(instructionsURL){
        const workers = ['bob','betty'];
        //const followInstructions = getFromURL(instructionsURL); //need help here
        const product = followInstructions(workers);
        console.log(product);
    }
}

I'd like to make sure the instructions are contained so that I don't risk the rest of my code. I would like to do something like a module require or import. I can't find a solution where I don't have to blindly execute unknown code...

1 answers

solution1
 0  2019-01-15 20:59:04

You should execute the code in a sandboxed iframe on an external domain, exactly like what StackOverflow does to handle running untrusted code in its snippets feature.

Do note that very old browsers (think before IE11) do not support sandboxed iframes.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How do I include a remote javascript file in a Greasemonkey script? How can I include/require foreign JavaScript libraries in WordPress? How do i remote include a javascript file in Titanium appcelerator and use the functions of that file? How do I use javascript require? How do I correctly include "require" in my angular 2 project? How do I run a javascript within html from the command line and include arguments? How do I include my custom Component using `require` instead of `include` How to include “require” in PhpStorm for my JavaScript code? How do I include Javascript inside PHP? How do I include a javascript library with angular 2?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM