Fix security warning for debugging and error reporting for deprecated unsafe modules

Inrixia · Inrixia · commit 5d88deeb453e · 2026-01-25T03:52:42.000+13:00
diff --git a/native/NativeModule/index.ts b/native/NativeModule/index.ts
@@ -36,12 +36,12 @@ ipcHandle("__Luna.registerNative", async (_, fileName: string, code: string) =>
 		code,
 	};
 
-	let exports = secureLoad(moduleInfo);
+	let exports;
 	try {
-		exports;
+		exports = secureLoad(moduleInfo);
 	} catch (err) {
 		const isDepricatedModule = Error.isError(err) && /Cannot use import statement outside a module/i.test(err.message);
-		if (isDepricatedModule) throw new Error("Plugin using depricated unsafe native code! Please ask the plugin author to rebuild!");
+		if (isDepricatedModule) throw new Error("Plugin using deprecated unsafe native code! Please ask the plugin author to rebuild!");
 		throw err;
 	}
 
diff --git a/native/NativeModule/moduleAlias.ts b/native/NativeModule/moduleAlias.ts
@@ -29,6 +29,9 @@ export const moduleAlias = (moduleName: string) => {
 		case "clipboard":
 			return "your CLIPBOARD";
 
+		case "DebugProcess":
+			return "DEBUG the main process";
+
 		default:
 			return moduleName;
 	}
diff --git a/native/NativeModule/secureLoad.ts b/native/NativeModule/secureLoad.ts
@@ -92,9 +92,9 @@ export const secureLoad = (moduleInfo: NativeModuleInfo): Module["exports"] => {
 
 	const WebAssembly = new Proxy(globalThis.WebAssembly, {
 		get(target, prop, receiver) {
-			console.warn(`[🛑Security🛑] "${fileName}" is loading WebAssembly (${String(prop)})!`);
+			console.warn(`[🛑Security🛑] '${fileName}' is loading WebAssembly (${String(prop)})!`);
 			if (!isTrusted(moduleInfo, "WebAssembly", target)) {
-				throw new Error(`[🛑Security🛑] Access Denied! User blocked 'WebAssembly' in '${fileName}'`);
+				throw new Error(`[🛑Security🛑] Access Denied! User blocked 'WebAssembly' (${String(prop)}) in '${fileName}'`);
 			}
 
 			return Reflect.get(target, prop, receiver);
@@ -135,12 +135,13 @@ export const secureLoad = (moduleInfo: NativeModuleInfo): Module["exports"] => {
 		argv: process.argv,
 
 		debugProcess: () => {
-			console.warn(`[🛑Security🛑] "${fileName}" is calling "process.debugProcess"`);
-			// if (!isTrusted(fileName, "DebugProcess", "Debug the main process, gives full system access!", hash)) {
-			// 	throw new Error(`Access Denied! User blocked "process.debugProcess" in "${fileName}"`);
-			// }
 			// @ts-expect-error This exists
-			process._debugProcess(process.pid);
+			const debugProcess: (pid: number) => void = process._debugProcess;
+			console.warn(`[🛑Security🛑] '${fileName}' is calling 'process.debugProcess'`);
+			if (!isTrusted(moduleInfo, "DebugProcess", debugProcess)) {
+				throw new Error(`[🛑Security🛑] Access Denied! User blocked 'process.debugProcess' in '${fileName}'`);
+			}
+			debugProcess(process.pid);
 			return process.debugPort;
 		},
 	};
diff --git a/package.json b/package.json
@@ -1,6 +1,6 @@
 {
   "name": "luna",
-  "version": "1.9.11-beta",
+  "version": "1.9.12-beta",
   "description": "A client mod for the Tidal music app for plugins",
   "author": {
     "name": "Inrixia",

Original file line number	Diff line number	Diff line change
`@@ -29,6 +29,9 @@ export const moduleAlias = (moduleName: string) => {`
`29`	`29`	`case "clipboard":`
`30`	`30`	`return "your CLIPBOARD";`
`31`	`31`
	`32`	`+ case "DebugProcess":`
	`33`	`+ return "DEBUG the main process";`
	`34`	`+`
`32`	`35`	`default:`
`33`	`36`	`return moduleName;`
`34`	`37`	`}`
Original file line number	Diff line number	Diff line change
`@@ -1,6 +1,6 @@`
`1`	`1`	`{`
`2`	`2`	`"name": "luna",`
`3`		`- "version": "1.9.11-beta",`
	`3`	`+ "version": "1.9.12-beta",`
`4`	`4`	`"description": "A client mod for the Tidal music app for plugins",`
`5`	`5`	`"author": {`
`6`	`6`	`"name": "Inrixia",`