Hi Everyone,
I think this is a feature request. We run a [semi] hardened PHP installation according to 25 PHP Security Best Practices For Sys Admins. Many functions are removed, including proc_close, proc_get_status, proc_nice, proc_open, proc_terminate, and shell_exec. Also see our security.ini, and the list of disable_functions.
We are unable to run SyntaxHighlight due to its use of some of the disabled functions.
It would be nice if SyntaxHighlight were modified to allow its use in a hardened system.
Here is what happens when we try to enable SyntaxHighlight in our configuration.
# ./maintenance/update.php Fatal error: Uncaught ExtensionDependencyError: SyntaxHighlight requires "shell" ability: Unable to run external programs, proc_open() is disabled in /var/www/html/w/includes/registration/ExtensionRegistry.php:334 Stack trace: #0 /var/www/html/w/includes/registration/ExtensionRegistry.php(186): ExtensionRegistry->readFromQueue(Array) #1 /var/www/html/w/includes/Setup.php(143): ExtensionRegistry->loadFromQueue() #2 /var/www/html/w/maintenance/doMaintenance.php(83): require_once('/var/www/html/w...') #3 /var/www/html/w/maintenance/update.php(277): require_once('/var/www/html/w...') #4 {main} thrown in /var/www/html/w/includes/registration/ExtensionRegistry.php on line 334