Towards Trust in Emacs: a just-in-time trust manager arrives on MELPA

April 18, 2026
aisecuritylawopen-source
Detailed view of a backlit laptop keyboard keys with blue LED lighting for tech concepts.
Photo by Castorly Stock on Pexels

Background

It has been reported that Emacs up to version 30 treated files as effectively trusted, a posture that contributed to security problems — notably the CVE-2024-53920 issue that the author says he reported. Emacs 30 tried to fix that by defaulting files to untrusted and gating risky features behind an explicit trust decision. Good idea on paper. Annoying in practice. When security gets in the way of everyday work, people hack around it. Who can blame them?

What trust-manager does

Enter trust-manager, a new Emacs package now available on MELPA that tries to square safety with convenience. Enable trust-manager-mode and it prompts the first time you open a file in a project: do you trust this project? Say yes, and the directory is remembered; say no, and that decision is remembered too. It also pre-trusts your init files and every directory on your load-path so your own config and shipped ELisp keep working without a hitch. Your choices live in trust-manager-trust-alist and are editable via M-x trust-manager-customize.

Why it matters

The immediate win is less friction: no more lost Flymake diagnostics because a buffer is untrusted and you have no quick way to flip trust on. The package adds a tiny red ? in the mode line for untrusted Emacs Lisp buffers — click it to trust that buffer and re-enable features. It has been reported that some users were widening trust scopes or disabling the system entirely; trust-manager aims to stop that slippery slope by making the secure path the easy path. Small improvements like this keep security from becoming a nuisance, and that’s the emotional pivot here: fewer interruptions, fewer knee-jerk workarounds.

Takeaway

If you’ve been grumbling about Emacs trust prompts or the sudden disappearance of ELisp features, trust-manager is a practical middle ground — polite guard, not an overbearing bouncer. The package and its commentary are on MELPA and documented in the author’s post for anyone who wants to try a gentler approach to trust in Emacs.

Sources: eshelyaron.com, Hacker News