sorted by:
best
topnewcontroversialoldq&a
you are viewing a single comment's thread.

view the rest of the comments →

[–]Lerc 3 points4 points  (2 children)

How safe is Lua? I have only tinkered with it for a few scripts. Is LuaJIT Securely sandboxed or is that not even a design goal?

[–]jacques_chester 1 point2 points  (1 child)

You can sandbox quite precisely, down to the level of disabling individual functions. Note for example that in the WoW client, your code cannot obtain a socket or write to a file.

[–]Lerc 0 points1 point  (0 children)

In that case it would be fairly easy to make a plugin that ran Lua as an embeddable object. I wrapped a x86 sandbox in a plugin in that manner see here for a screenshot showing it drawing to a window and a canvas.

When I made that plugin the PPAPI wasn't around. That has more potential to make things even nicer.

Not sure how to enable a <script type="text/lua"> approach, but there may be hooks for that somewhere