auth_path = "script::run::#{name}".intern
return unless @bot.auth.allow?(auth_path, m.source, m.replyto)
- code = @commands[name].code.dup.untaint
+ code = @commands[name].code.dup
# Convenience variables, can be accessed by scripts:
args = m.message.split
user = args.empty? ? m.sourcenick : args.first
Thread.start {
- # TODO allow different safe levels for different botusers
- $SAFE = 3
-
begin
eval( code )
rescue Exception => e
def handle_eval( m, params )
- code = params[:code].to_s.dup.untaint
+ code = params[:code].to_s.dup
Thread.start {
- # TODO allow different safe levels for different botusers
begin
eval( code )
rescue Exception => e
def handle_echo( m, params )
- code = params[:code].to_s.dup.untaint
+ code = params[:code].to_s.dup
Thread.start {
- # TODO allow different safe levels for different botusers
begin
m.reply eval( code ).to_s
rescue Exception => e
plugin.default_auth( 'edit', false )
plugin.default_auth( 'eval', false )
plugin.default_auth( 'echo', false )
+plugin.default_auth( 'show', false )
plugin.default_auth( 'run', true )
plugin.map 'script add -f :name *code', :action => 'handle_add_force', :auth_path => 'edit'