Lumina [Weaver Edition]

**IfOnlyYouKnew** · 04-02-2024

Lumina [Weaver Edition]

No Flash Install, Updated WebView2 Browser, No Pepflashplayer, Projector for [ED,AQW] as they do not work with Ruffle yet.

Requires: .NET 6.0 & Windows 10 or 11 [Can also work for fine for Linux users, I will make a tutorial]
Status: W.I.P.

Release version: Test, Everything but AQW uses official links, aqw refused to work without a custom Loader.

TO THE STAFF MEMBER WHOM IT MAY CONCERN:
Requirement: Ruffle links

In order to make the Flash games work in the newer up-to-date browser a script for Ruffle is injected on the appropriate pages, this is the only outside content and should be more secure than usual since,
Ruffle is an Adobe Flash Player emulator written in the Rust programming language. Ruffle targets both the desktop and the web using WebAssembly. This would be under a "needs this to work" request because it requires it. Otherwise all internal. I do not manage the ruffle content, Ruffle seems to use unpkg.

This is a request to allow it to have Ruffle relations, while very tedious and I would hate every moment, I can get the NodeJS ruffle source and utilize that with this to use local ruffle assets instead via an implemented nodejs server. I would prefer not to

.

If it's a no just reject the Attachment and I will get to changing it up and coding the new needed setup. From my understanding I am allowed to request this since it is required to make it work.

VirusTotal - File - 34bc51f4142e603e4e16a468ef3aef33f3f5ce23c50f8673c8 429db9bbc3657b
Lumina_trial.zip - Jotti's malware scan
False Flags 2: 1 from MaxSecure, 1 from Zillya (Unless I got hacked this flag should be due to the web management script injection settings if I'm not mistaken)

Files reported as Trojan:Win32/Rozena may not necessarily be malicious as the file can be a false positive detection. In this case FP.

**IfOnlyYouKnew** · 3 Weeks Ago

Well seeing as Ruffle is running Rust/etc. and as of recent all rust versions before 1.77.2 have a critical vulnerability flaw that enables Windows command injection attacks.

****** rated this vulnerability as critical severity with a maximum CVSS base score of 10/10. Unauthenticated attackers can exploit it remotely, in low-complexity attacks, and without user interaction.

So maybe don't approve yet will be looking more into Ruffle myself. Although pretty sure Ruffle is fine and not an issue of the sort.