Using Arm® Compiler securely in a shared environment
Arm® Compiler provides features and language support in common with other toolchains. Misuse of these common features and language support can provide access to arbitrary files, execute system commands, and reveal the contents of environment variables.
If deploying Arm Compiler into environments where security is a concern, then Arm strongly recommends that you do all of the following:
- Sandbox the tools to limit their access to only necessary files.
- Remove all non-essential environment variables.
- Prevent execution of other binaries.
- Segregate different users from each other.
- Limit execution time.