Docs + Types server: Add comments about script-security

author: jwijenbergh <jeroenwijenbergh@protonmail.com> 2023-03-21 16:02:18 +0100
committer: Jeroen Wijenbergh <46386452+jwijenbergh@users.noreply.github.com> 2023-09-25 09:43:37 +0200
commit: 62146dbdef785f26567b1074d38802c0b2157795 (patch)
tree: 79ea749ccce47a1f80d462142ce545c78813bce2 /docs
parent: a8e43d757000fbfd783026925ad4ea4ef9efc0d0 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/docs/src/api/overview/README.md b/docs/src/api/overview/README.md
index 989e8a6..4ad1a2c 100644
--- a/docs/src/api/overview/README.md
+++ b/docs/src/api/overview/README.md
@@ -202,7 +202,7 @@ State transitions that must be handled:
 - `Ask_Location`: For asking the secure internet location. Acknowledge the request with [SetSecureLocation](#set-secure-location)
 
 Return type:
-- The VPN configuration with associated data (`types.server.Configuration`). Note that this also contains Tokens that can be saved by the client.
+- The VPN configuration with associated data (`types.server.Configuration`). Note that this also contains Tokens that can be saved by the client. Note that the VPN configuration itself has "script-security 0" added to the end if it's an OpenVPN config. This is to disable OpenVPN scripts from being run by default. A client may override this if it has a good reason to.
 - An error
 
 ### Expiry Times
author	jwijenbergh <jeroenwijenbergh@protonmail.com>	2023-03-21 16:02:18 +0100
committer	Jeroen Wijenbergh <46386452+jwijenbergh@users.noreply.github.com>	2023-09-25 09:43:37 +0200
commit	62146dbdef785f26567b1074d38802c0b2157795 (patch)
tree	79ea749ccce47a1f80d462142ce545c78813bce2 /docs
parent	a8e43d757000fbfd783026925ad4ea4ef9efc0d0 (diff)