Skip to content

Commit

Permalink
Add a relevant description about security practice for resources
Browse files Browse the repository at this point in the history
  • Loading branch information
@logseq-cldwalker
logseq-cldwalker committed Jun 28, 2023
1 parent f80568e commit 71fa4cb
Showing 1 changed file with 7 additions and 0 deletions.
7 changes: 7 additions & 0 deletions docs/dev-practices.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -316,6 +316,13 @@ inspectors for block/page data and AST.
Since the desktop app is built with Electron, a full set of Chromium developer
tools is available under the menu `View > Toggle Developer Tools`. Handy tools
include a JS console and HTML inspector.
## Security Practices

* Our builds should not include unverified, third-party resources as this opens
up the app to possibly harmful injections. If a third-party resource is
included, it should be verified against an official distributor. Use
https://github.com/logseq/logseq/pull/9712 as an example to include a third
party resource and not the examples under resources/js/.

## FAQ

Expand Down

0 comments on commit 71fa4cb

Please sign in to comment.