Eval(), new Function() should never execute with system principal.It is being removed everywhere from our codebase as part of Bug 1473549. The affected code which should be rewritten, https://dxr.mozilla.org/mozilla-central/rev/c291143e24019097d087f9307e59b49facaf90cb/testing/mochitest/harness.xul#51
Component: Mochitest → DOM: Security
Product: Testing → Core
Version: Version 3 → unspecified
Comment on attachment 9019020 [details] Bug 1498572 - Remove eval from harness.xul Please kindly review the patch and let me know if changes are needed. Corresponding TRY push for this patch is, https://treeherder.mozilla.org/#/jobs?repo=try&revision=471f14cb23e9edd966f120928ff61f422b7df11a&selectedJob=206979515
Attachment #9019020 - Flags: review?(ckerschb)
Comment on attachment 9019020 [details] Bug 1498572 - Remove eval from harness.xul As mentioned in Phabricator, if that works I am fine with it. thanks!
Attachment #9019020 - Flags: review?(ckerschb) → review+
Pushed by firstname.lastname@example.org: https://hg.mozilla.org/integration/autoland/rev/6615d7dcdec1 Remove eval from harness.xul r=ckerschb
You need to log in before you can comment on or make changes to this bug.