goplay怎么了？

What happened to goplay? I see a lot of earlier references to a utility that used to ship with go at /misc/goplay. However, it seems this has been removed in go1.3

The old version is still viewable on the source repo as late as go1.3beta2: go1.3beta2: misc/goplay/, and works if you install it locally. Poking around a bit, I find that it was removed at revision 2daa4d89e0d9 citing concerns about code execution.

The playground is great, but it doesn't seem like it is easy to run your own local instance that will work with all of the libraries you have on path, and for some libraries, svgo in particular, it seems very useful to have a utility like goplay. Is there some new utility that is meant to supplant it? Is there a canonical choice of third party utility to achieve the same effect?

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

1条回答默认最新

关注

码龄粉丝数原力等级 --

被采纳

被点赞

采纳率
dongrouyuan5685 2014-06-24 03:34
关注
The commit message for its removal seems fairly straight forward. Anyone who could connect to the goplay server can execute arbitrary code as the user.

By default it listens on localhost, which makes it vulnerable to attacks from other local users on the machine, but if you configure it to listen on another address it will allow remote code execution.

You cite the ability to make use of packages not available on the Go Playground as a benefit, but this is also why goplay is less secure: the set of packages available to the Playground was chosen in order to close off attack vectors.

The code is still available in the repository history, so you can download and compile it if you want, but it is not recommended. For local development, you could probably get a better experience by teaching your favourite text editor to run go run filename.go in response to a shortcut or button press.

本回答被题主选为最佳回答 , 对您是否有帮助呢?

解决无用
评论打赏
分享
举报

评论

按下Enter换行，Ctrl+Enter发表内容

报告相同问题？

关注问题

goplay怎么了？
2014-06-24 01:06

回答 1 已采纳 The commit message for its removal seems fairly straight forward. Anyone who could connect to the
延迟关闭多个Goroutine？
2016-08-19 04:41

回答 1 已采纳 You are correct about the cause of error being un-closed fanIn's channel. You can use a sync.WaitG
登录后如何自动添加JWT？
2017-07-13 16:02

回答 2 已采纳 When using JWT, the client typically have to specify the token itself. To make the token handling
goplay:当地的游乐场
2021-06-02 17:14

只需运行goplay 。安装 go get github.com/doloopwhile/goplay 配置 git config goplay.root goplay在其中创建沙箱目录的目录路径。默认为/tmp/goplay 。 $EDITOR环境变量如果指定了-e选项，则编辑器打开创建的...
如何在不使用sync.WaitGroup的情况下防止死锁？
2017-05-25 11:28

回答 2 已采纳 This is a proof of example syncing without waitgroup. Example in the Go playground package main
如何在go中动态更改函数参数类型
2019-01-15 06:04

回答 1 已采纳 How to change function parameter type dynamically in go [?] You simply cannot. Go is statical
AES CBC：JavaScript / CryptoJS加密-> Golang解密 javascript
2019-03-22 21:30

回答 2 已采纳 I'm still not totally sure why previous attempts have failed. It could have been one of many the d
GoPlay_Android_产品案.rp
2023-10-23 02:46

GoPlay_Android_产品案.rp
用于密码检查的PHP正则表达式模式在Go中不起作用
2016-07-23 15:59

回答 1 已采纳 Go regexp does not support lookarounds. Also, the /.../ regex delimiters are not supported, either
从接收方关闭通道：从多个goroutine访问sync.Mutex时出现死锁
2018-04-01 08:43

回答 2 已采纳 You can try as hard as you like: you have to close the channel from sender side. You might be abl
忽略CTRL-C时从用户读取输入
2016-04-13 16:18

回答 1 已采纳 signal.Notify sends signal information to the channel specified, every time process receives signa
ios-GoPlay.zip
2019-07-11 19:11

基于FFmpeg / OpenGL ES的音视频播放器，支持自定义滤镜，支持VR播放，支持水印。支持FFmpeg所有格式RTMP/RTSP/HTTP/FLV，支持本地文件播放，支持直播 https://github.com/dKingbin/GoPlay
我如何获得方法参数名称
2015-02-10 13:30

回答 1 已采纳 The names of local variables (including function arguments) are just for the programmer; the compi
goplay.zip_run_rungame
2022-09-24 23:11

cai nay dung de run game tronga u
goplay:Proto Actor的游戏服务器
2021-05-18 23:34

goplay this sample is a game server based on Installation cd $GOPATH/src go clone github.com/piaohua/goplay Usage: cd $GOPATH/bin/ctrl ./ctrl cp conf.ini.local conf.ini ./ctrl build login ./login-bin ...
GoPlay 原理详解
2019-05-09 09:33

weixin_34221276的博客 GoPlay是一款基于FFmpeg/OpenGL ES 2.0 的iOS播放器。支持FFmpeg内嵌的所有格式。而且可以自定义各种滤镜, 包括VR、水印等。前沿关于iOS视频播放，苹果提供的AVPlayer性能是非常出色的，但是有个缺点，就是支持...
vrtnu-vtmgo-goplay-service:整合弗拉芒语在线电视服务
2021-05-01 14:36

什么？ JVM库，用于登录和检索Flemish媒体内容。提供了一个sample模块。现在的VRT 现在的VRT 验证验证 accessToken ... GoPlay获取个人资料内容所有程序按字母顺序搜索检索剧集检索流电
vscode中安装 gotests gomodifytags impl goplay dlv staticcheck gopls时一直失败问题记录
2023-02-25 18:06

smart_zhu的博客之前安装在旧版本的vscode中一直没有这个问题（前提自己有vpn），在新的vscode1.75.1版本中一直报错，经过chatGPT咨询，发现需要检查vscode的代理是否设置，最终设置了vscode的proxy，才能正常下载。
vscode设置goplay，运行时设置不打开默认浏览器
2023-12-18 15:47

curiousChen的博客即而可选择是否打开浏览器、是否分享、是否执行。如上图所示，不要勾选✔第一个。
使用goplay录制并重放流量实现自动化接口测试 | Gopher Daily (2021.08.06) ʕ◔ϖ◔ʔ...
2021-08-06 20:52

Tony Bai的博客 - https://groups.google.com/g/golang-announce/c/uHACNfXAZqk 使用goplay录制并重放流量实现自动化接口测试 by 腾讯 https://mp.weixin.qq.com/s/WrfaCt39Jb4vViKB2-qynw TiDB 海量 region 集群调优实践 - ...
没有解决我的问题, 去提问

悬赏问题

¥15 ikuai客户端多拨vpn，重启总是有个别重拨不上
¥20 关于#anlogic#sdram#的问题，如何解决？(关键词-performance)
¥15 相敏解调 matlab
¥15 求lingo代码和思路
¥15 公交车和无人机协同运输
¥15 stm32代码移植没反应
¥15 matlab基于pde算法图像修复，为什么只能对示例图像有效
¥100 连续两帧图像高速减法
¥15 如何绘制动力学系统的相图
¥15 对接wps接口实现获取元数据

goplay怎么了？

1条回答 默认 最新

悬赏问题

1条回答默认最新