Yuri Khan <yuri.v.k...@gmail.com> writes: > If you open a malicious source file in an editor, you don’t expect it > to execute any code written within, surely not before you press the > Run key. If opening a file for editing trashes your home directory, > it’s a bug and a vulnerability. If opening a file for editing causes > personal information to be sent outside, it’s a bug and a > vulnerability.
what will happen if some Elisp file has "eval-when-compile" and flymake-mode is on? I guess the code will be executed without an explicit Run keypress.
