Menu
To execute some commands like installing typescript via NPM, Sometimes it is needed to execute :
Set-ExecutionPolicy -ExecutionPolicy RemoteSigned
in PowerShell, When you want change this policy, it warns that :
Changing the execution policy might expose you to the security risks
My question is, anyone knows what are the security risks of doing such an action? is there any chance that famous packages like typescript leads to security problems?
588
There is very little risk involved with RemoteSigned, Basically this lets you execute unsigned scripts (scripts you write) only in local computer, while scripts from a remote source (From internet) must be signed by a trusted authority. The only security risk is that someone might write malicious script on your local computer and you execute it without knowing what is it. This is the most recommended. Default on Server editions.
And Unrestricted in highly insecure, letting you to run unsigned scripts from any source. This is not recommended.
And Restricted is too annoying, signed scripts even could not run, only interactive sessions. This is default on desktop editions.
64
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
