From 9479d5cbc1351567253a71cee33b83efc5cc26d3 Mon Sep 17 00:00:00 2001 From: ANAND Date: Thu, 17 Jan 2019 17:19:59 +0530 Subject: [PATCH] Fix incorrect capitalisation --- _en/quality/security.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/_en/quality/security.md b/_en/quality/security.md index 88fafc0..3469c29 100644 --- a/_en/quality/security.md +++ b/_en/quality/security.md @@ -91,11 +91,11 @@ local ie = minetest.request_insecure_environment() ie.os.execute(("path/to/prog %d"):format(3)) ``` -`String.format` is a function in the global shared table `String`. +`string.format` is a function in the global shared table `string`. A malicious mod could override this function and pass stuff to os.execute: ```lua -String.format = function() +string.format = function() return "xdg-open 'http://example.com'" end ```