263506 2023-10-21 22:58:55 -0700 Make sensitive jsc global namespace properties not enumerable by Object.getOwnPropertyNames. 2023-10-22 20:54:08 -0700 1 1 1 Unclassified WebKit JavaScriptCore WebKit Nightly Build Unspecified Unspecified RESOLVED FIXED InRadar P2 Normal --- 1 mark.lam mark.lam webkit-bug-importer oldest_to_newest 1986723 0 mark.lam 2023-10-21 22:58:55 -0700 Some functions in the jsc shell GlobalObject are only added as debugging aids. They are meant to be used carefully under controlled conditions for test development. Though they are added as DontEnum, Object.getOwnPropertyNames() still enumerates them. We should filter out all DontEnum properties of this GlobalObject so as not to trip up fuzzers that try to fuzz with Object.getOwnPropertyNames. rdar://112815258 1986724 1 mark.lam 2023-10-21 23:31:45 -0700 Pull request: https://github.com/WebKit/WebKit/pull/19399 1986758 2 ews-feeder 2023-10-22 20:54:06 -0700 Committed 269639@main (15477a1fd6b5): <https://commits.webkit.org/269639@main> Reviewed commits have been landed. Closing PR #19399 and removing active labels.