It is really easy to download CAD files from the internet, and it’s even easier to copy and paste iLogic code from online forums. For the most part this is generally not an issue, however, there is a chance that malicious code could be embedded in iLogic rules, or in code that automatically launches when a file is opened (via an event trigger).
This sounds quite dramatic, but have a look at the animated GIF below, showing an inventor part file launching a potentially malicious website.
This is something that I knocked together, and although it is not malicious, it shows the potential for someone to do something nefarious.
The good news, is that Autodesk recognised this and introduced security settings to iLogic in the 2018 release of Inventor.
There are a couple of places that you can access the security settings from:
- Manage tab > iLogic panel > Event Triggers
- Tools tab > Options panel > iLogic Configuration
It is advisable to enable the checkbox for “inspect rules for malicious code”
Note that in this dialogue there are options for enabling specific Files, Projects, External Rules and External Rule Folders (highlighted green tabs above). At the bottom of the dialogue, you are able to enable event triggers.
When opening a file with potentially malicious code, Inventor will flag up a security alert, giving you the option to run the code and add it to a safe list, or to not run the code. Remember that you can change the settings for the individual file later in the settings.
The example in the animation above is stopped because the code launches a website. If you have any code that opens another file (eg. launch a PDF after publishing it), the security alert will pop up, this is because Inventor is not in control of the 3rd party file, and launching another document, is potentially harmful.
With this in mind, Autodesk have put together a robust tool set to protect you. You will need to decide on how to implement it, to best suit your individual needs.