Okay, I worked today hard on testing and modifying my latex plugin for ikiwiki. After this day I could easily say:

My tex.pm works as expected. I've added an small security test which via a blacklist. The really nice thing is that many commands won't work inside a math environment. So I should of course take care of that it isn't possible to get out of this environment. The next very nice thing is: It isn't possible to execute something on the commandline using latex. So the only danger here is that somebody is able to include something into the generated image which shouldn't be there. One example is that it shouldn't be possible to include system configuration files.

Okay now here is the list what my tex.pm do atm:

• useage of IkiWiki functions as will_render, urlto, writefile, etc.
• small security check using regex
• scaling of image using (give another pt argument to \usepackage[xxpt]{scrartcl}
• renders chemistry, physical and math formulas without any problems
• ....

But sadly there are still lots of things which should be working until GSoC is over:

• enhanced security check (using some kind of latex parser)
• check if the given height for the image is a working one
• improve the blacklist
• check if there are some additional packages which should be included into the template
• and finally: many many testing!!