Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Community Question: How to add /data/notebooks to Python path #130

Closed
margaretkennedy opened this issue Jan 9, 2024 · 1 comment
Closed

Community Question: How to add /data/notebooks to Python path #130

margaretkennedy opened this issue Jan 9, 2024 · 1 comment
Assignees
@jjbrosnan
Labels
question A user question
Milestone
1. November 2024 ...

Comments

@margaretkennedy
Copy link
Collaborator

The DHC web UI writes files to a directory. Because of this, users can import these files to use in other scripts. To do this, they need to add /data/notebooks to the python path. Adding this path by default for all users can be risky because the mechanism used to create and maintain these files is totally insecure -- any browser can edit them.

Document everything, including the vulnerability. Have instructions on how to add it and explain the reason why.
@margaretkennedy margaretkennedy added the question A user question label Jan 9, 2024
@margaretkennedy margaretkennedy added this to the 3. Backlog milestone Jan 9, 2024
@jjbrosnan
Copy link

This question is a partial duplicate of this:

https://deephaven.io/core/docs/reference/community-questions/import-python-script/

We should just add a note to that page about how it's a security vulnerability to do it.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@jjbrosnan jjbrosnan

Labels
question A user question
Projects
None yet
Milestone
1. November 2024 (Community)
Development

No branches or pull requests
2 participants
@margaretkennedy @jjbrosnan