diff options
| author | Marcus Meissner <marcus@jet.franken.de> | 2020-01-26 16:42:37 +0100 |
|---|---|---|
| committer | Marcus Meissner <marcus@jet.franken.de> | 2020-01-26 16:42:37 +0100 |
| commit | b655d69c05f1813ca17c95b976edba791a52ade9 (patch) | |
| tree | c2621816207bad3bf21690160bea60454211e76a /SECURITY.md | |
| parent | f57017e6ced8ebc19c0d01b831cca1ff3b858785 (diff) | |
| download | libgphoto2-b655d69c05f1813ca17c95b976edba791a52ade9.tar.gz | |
clarify notes
Diffstat (limited to 'SECURITY.md')
| -rw-r--r-- | SECURITY.md | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/SECURITY.md b/SECURITY.md index 678ed8b80..66d512feb 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -14,7 +14,9 @@ libgphoto2 only processes images to provide standard formats. For JPEG images the libexif library is used for extraction of EXIF data. Callers of the library can be assumed trusted, also input coming into -the library is considered trusted. +the library via API calls is considered trusted. + +Data coming from port drivers (USB, serial, IP, etc) is considered untrusted. Historically the primary development goals was "make it work", without security in mind. |