I’m developing an atom package which uses a third-party nodejs package, which I’ve in turn installed via “npm install”.
When calling “toggle” I get the following error:
I’ve followed the stracktrace and in one of the JS files the third-party package really calls “eval”. I’m not sure how to find a work-around for this issue. Isn’t atom run in some kind of “sandbox”? If yes, then why would evaluation of a string as JS code pose a threat?