ilya-biryukov added a comment. Another interesting consideration: we choose to ask users to whitelists compilers we might run from `compile_commands.json` that we can. We are in a better position here, since we're not running the binaries based on user input.
Technically, we could consider using the same mechanism for running `xcrun`. It will probably never be used in practice, though (and we'll have to whitelist some common `xcrun` binaries anyway). Repository: rG LLVM Github Monorepo CHANGES SINCE LAST ACTION https://reviews.llvm.org/D70863/new/ https://reviews.llvm.org/D70863 _______________________________________________ cfe-commits mailing list cfe-commits@lists.llvm.org https://lists.llvm.org/cgi-bin/mailman/listinfo/cfe-commits
