Add a notice to the ref about locate()

BYOND Forums

Announcements · BYOND Help · Bug Reports · Feature Requests · Beta Testers · Beta Bugs · Developer Help · Design Philosophy · Demos & Libraries · Tutorials & Snippets · Art & Sound · Classified Ads · Game Updates · Contests & Events · Linux Talk · On Topic · Off Topic

ID:2783425

Apr 18 2022, 8:20 am

Alexkar598

Applies to:

Website

Status:

Open

Issue hasn't been assigned a status value.

There really should be a warning on https://secure.byond.com/docs/ref/#/proc/locate in the same style as https://secure.byond.com/docs/ref/#/client/proc/Topic

Something along the lines of:
When using locate() with a TextRef issued from untrusted input (such as Topic), always validate the returned object to make sure it is of the type you expect. If players control the ref, they can craft it to refer to any object of any type. Check that the returned object is of the proper type with istype()