about summary refs log tree commit diff stats
path: root/sandboxing
diff options
context:
space:
mode:
Diffstat (limited to 'sandboxing')
-rw-r--r--sandboxing/README.md9
1 files changed, 9 insertions, 0 deletions
diff --git a/sandboxing/README.md b/sandboxing/README.md
index ed0a9ea..ab3adf3 100644
--- a/sandboxing/README.md
+++ b/sandboxing/README.md
@@ -8,6 +8,15 @@ doesn't invoke any OS syscalls.
 ## Top down
 
 Things to secure:
+* screen? Keep apps from drawing over standard Teliva UI elements.
+  * Teliva currently doesn't stop apps from overwriting the menu, if they're
+    clever. However, it always redraws its UI elements before accepting any
+    input from the keyboard.
+
+* code? There are currently no protections against .tlv files clobbering
+  existing definitions. I'm hoping that disallowing native code keeps this
+  safe. Apps can only affect themselves.
+
 * files opened (for read/write) on file system
   * `io_open`
   * `io_lines`