inikulin/replicator

[list] Improve security

AndreyBelym opened this issue 4 years ago · 0 comments

AndreyBelym commented 4 years ago

Refactor the TypedArray deserializer to avoid RCE [WIP] (#16)
Refactor the Error deserializer to avoid RCE and eliminate eval()
Execute deserializers in a sandbox to improve RCE protection