Skip to content

drses/frozen-realms-shim

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

21 Commits
amdTestDir
amdTestDir
 
 
contract
contract
 
 
README.md
README.md
 
 
amdTest.js
amdTest.js
 
 
amdTest1.js
amdTest1.js
 
 
amdTest3.js
amdTest3.js
 
 
atLeastFreeVarNames.js
atLeastFreeVarNames.js
 
 
cheat.js
cheat.js
 
 
compileExprLater.js
compileExprLater.js
 
 
contract.html
contract.html
 
 
contractTest.js
contractTest.js
 
 
debug.js
debug.js
 
 
demo.js
demo.js
 
 
detect.js
detect.js
 
 
ejectorsGuardsTrademarks.js
ejectorsGuardsTrademarks.js
 
 
explicit.html
explicit.html
 
 
hookupSES.js
hookupSES.js
 
 
hookupSESPlus.js
hookupSESPlus.js
 
 
index.html
index.html
 
 
logger.js
logger.js
 
 
makeFarResourceMaker.js
makeFarResourceMaker.js
 
 
makeQ.js
makeQ.js
 
 
makeSimpleAMDLoader.js
makeSimpleAMDLoader.js
 
 
package.json
package.json
 
 
repair-framework.js
repair-framework.js
 
 
repairES5.js
repairES5.js
 
 
ses-usage.js
ses-usage.js
 
 
ses.js
ses.js
 
 
ses5.js
ses5.js
 
 
startSES.js
startSES.js
 
 
strict-debug-bug.html
strict-debug-bug.html
 
 
useHTMLLogger.js
useHTMLLogger.js
 
 
whitelist.js
whitelist.js
 
 

Repository files navigation

SES5

Secure EcmaScript 5

⚠️ This is not an official, working packaging of Google Caja’s SES. This is a project attempting to bring SES to Node.js. There remain a few surmountable obstacles before we achieve proper confinement.

SES5 is a tool that allows mutually suspicious programs to share a single EcmaScript 5 compliant JavaScript context without interfering with each other. It does this by freezing everything that is accessible in global scope, removing interfaces that would allow programs to interfe with each-other, and providing the ability to evaluate arbitrary code in isolation.

Usage:

var ses = require('ses5');
ses.confine(`
    log("Hello, Outside World!")
`, {
    log: function log(message) {
        console.log(message);
    }
});
 Repaired: Non-deletable RegExp statics are a global communication channel
 Repaired: Date.prototype is a global communication channel
 Not repaired: Date.prototype should be a plain object
 Not repaired: RegExp.prototype should be a plain object
 Not repaired: %ThrowTypeError% has normal function properties
 Max Severity: Safe spec violation(1).
 230 Deleted
 215 Frozen harmless
 41 Globals are not readonly data properties
 44 Globals changed inexplicably
 44 Globals wre not made readonly
 1 Skipped
 Max Severity: New symptom(6) is not SES-safe.
 initSES succeeded.
Hello, Outside World!

About

Shim for EcmaScript Frozen Realms

Resources

Readme
Activity
Custom properties

Stars

8 stars

Watchers

7 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages