Remove debug.getupvalue from the Lua sandbox whitelist

This function could be used to steal insecure environments from trusted mods.
author: ShadowNinja <shadowninja@minetest.net> 2016-03-02 23:59:42 -0500
committer: ShadowNinja <shadowninja@minetest.net> 2016-03-03 00:09:05 -0500
commit: abd4a79acbdfcea0bb661b8065ef3ac8f3e25e80 (patch)
tree: 440d59b0d33e55a2f9d4d40bd6554e8249f7df63 /src/script
parent: 8b006a154b31a2fd0fb58e77db25debef4bb61e0 (diff)
download: minetest-abd4a79acbdfcea0bb661b8065ef3ac8f3e25e80.tar.gz
minetest-abd4a79acbdfcea0bb661b8065ef3ac8f3e25e80.tar.bz2
minetest-abd4a79acbdfcea0bb661b8065ef3ac8f3e25e80.zip
1 files changed, 0 insertions, 1 deletions
diff --git a/src/script/cpp_api/s_security.cpp b/src/script/cpp_api/s_security.cpp
index 36f8e9c0d..730235c7b 100644
--- a/src/script/cpp_api/s_security.cpp
+++ b/src/script/cpp_api/s_security.cpp
@@ -116,7 +116,6 @@ void ScriptApiSecurity::initializeSecurity()
 		"upvaluejoin",
 		"sethook",
 		"debug",
-		"getupvalue",
 		"setlocal",
 	};
 	static const char *package_whitelist[] = {
author	ShadowNinja <shadowninja@minetest.net>	2016-03-02 23:59:42 -0500
committer	ShadowNinja <shadowninja@minetest.net>	2016-03-03 00:09:05 -0500
commit	abd4a79acbdfcea0bb661b8065ef3ac8f3e25e80 (patch)
tree	440d59b0d33e55a2f9d4d40bd6554e8249f7df63 /src/script
parent	8b006a154b31a2fd0fb58e77db25debef4bb61e0 (diff)
download	minetest-abd4a79acbdfcea0bb661b8065ef3ac8f3e25e80.tar.gz minetest-abd4a79acbdfcea0bb661b8065ef3ac8f3e25e80.tar.bz2 minetest-abd4a79acbdfcea0bb661b8065ef3ac8f3e25e80.zip