DDoS / Performance / Memory Safety #332
Description
I came across this Gem and would like to use it to pass user defined rules to determine whether to execute webhooks.
The user would enter something like: status = 'failed' AND user_id != 100 and a system generated hash will be used to evaluate.
My concern is that a user might be able to enter something like 9999 ^ 9999 and it might cause issues (crashing the server, blocking threads etc).
Is there any prior conversation around this?
Perhaps we could have the option to disable/enable functions/feature individually so we can allow comparitors etc, but disallow mathematical computation? Or just disable POW?
Thanks a mill