Hi all, just finished creating a fairly simple plugin here that allows you to load arbitrary kak files. It also supports loading machine/project specific configuration out of the box. This typically presents security issues, because loading files based on their location could allow someone to inject said files into your projects and execute arbitrary code on your machine. The plugin also leverages
gpg to sign and verify these configuration files, hopefully addressing those concerns. It’s a bit less convenient, but hopefully worth the extra peace of mind.
Let me know what you think and feel free to raise issues about concerns/potential improvements