 |
Post Au2mszxdHRLKcmQy0W by [email protected] |
 |
More posts by [email protected] |
|
Post #Au0q2lW5kWqWGiysoi by [email protected] |
|
0 likes, 1 repeats |
|
|
|
We have a cronjob to spot unwanted utf8 letters in #curl PRs as we have noticed… |
|
|
|
Post #Au0q2lebEteSh6xg4u by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@bagder I feel like there needs to be tools that make safer handling of Unicode… |
|
|
|
Post #Au0rerrGihHYtYcQQy by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder That's very interesting, as Forgejo displays a big warning on top i… |
|
|
|
Post #Au0rerxeKyO1DLbWNc by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@wrmsr indeed! |
|
|
|
Post #Au0rfT0Qbbas6gBlLc by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder Out of curiosity, why is it a cronjob instead of just on the pull_reque… |
|
|
|
Post #Au0rfT5kHpqaNAg0dU by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@worr sorry, just me not bringing my brain. It is a CI job. Edited now. |
|
|
|
Post #Au0rfnQKh0CNQoSjVA by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@fossunleashed agreed! |
|
|
|
Post #Au0rg78zNCD0aoVAFE by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder was this malicious? |
|
|
|
Post #Au0rg7G4wpscwnopIO by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@wolf480pl no, this commit is done by me on purpose in order to test the CI and… |
|
|
|
Post #Au2lNmpJxjuixV6EE4 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder GitHub recently added warning for Hidden Unicode characters.Maybe they … |
|
|
|
Post #Au2lOfUeiH40VKr09Q by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder isn't this literally an attack vector if it was a malicious pr? |
|
|
|
Post #Au2lOfb2KYASp7q664 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@efi yes indeed |
|
|
|
Post #Au2lOfhPwpGv8upC2i by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder wait, did I misunderstand and it is your job to find these issues? |
|
|
|
Post #Au2lSFkyLO1XqECAPA by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder Do you have a link to the CI job source? I'm curious how this works |
|
|
|
Post #Au2lTrufxrCiTHVKPg by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@efi it is my job to not let malicious content into repositories I maintain, yes |
|
|
|
Post #Au2la1dAkOBGLcFkAK by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder would you mind sharing cron code? GitHub link or something! |
|
|
|
Post #Au2la1kcIi8Sihjglk by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@amustaque97 https://github.com/curl/curl/pull/17247 |
|
|
|
Post #Au2lcElOtJAJeo9kVk by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder Python went through a few traumas with Unicode normalisation - https://… |
|
|
|
Post #Au2lfuzoKQALVWeTcu by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder They could still make it better - showing non-ASCII (UTF8) characters i… |
|
|
|
Post #Au2lfv8fnTFrx0nYRM by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@dusoft @bagder Also remember to make it possible for color blind people to als… |
|
|
|
Post #Au2lfvG7LnD4K6HV2m by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@harmone And what about the vast majority of people that don’t write in a Lat… |
|
|
|
Post #Au2lnjnrpHn56vnHqS by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder That means that somebody actually sat down and browsed all the fonts to… |
|
|
|
Post #Au2lnjvJNbkHU1HERs by [email protected] |
|
0 likes, 0 repeats |
|
|
|
That means that somebody actually sat down and browsed all the fonts to find th… |
|
|
|
Post #Au2lptDJoEAwsNizTs by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder forgejo / gitea showing it like this: |
|
|
|
Post #Au2lptKlMY89FTCw5I by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@vsz neat! |
|
|
|
Post #Au2luhPL8CrFhxdnai by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder Tried something like: https://gist.github.com/gbraad/551eabc8a79de04a13… |
|
|
|
Post #Au2luiKPi0VmYyLNYG by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Seems this can be done with golint-ci https://golangci-lint.run/usage/linters/… |
|
|
|
Post #Au2m0ya6C3bKhyfNrs by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder what the heck, how is this yet another instance of forgejo doing GitHub… |
|
|
|
Post #Au2m4JQh8W4gEkrIRs by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@amustaque97 the check was merged into into another script for generic checks, … |
|
|
|
Post #Au2m5oD6BDSRzWDFfU by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder best of luck getting this solved 🐾🍀 |
|
|
|
Post #Au2m8GhrCeNSwvlxiK by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@leftpaddotpy @bagder although, in Forgejo's case, I wish the heuristics we… |
|
|
|
Post #Au2mCFy1tR4pocEriK by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@fossunleashed The Unicode standard specifies algorithms for safely and correct… |
|
|
|
Post #Au2mG3ChHzRVO9uOhc by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder You're right, I can't spot the character by eye. Which characte… |
|
|
|
Post #Au2mG3Jmrd77k9E3km by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@sloanlance the alt text says it: it is the 'g' in github that is chang… |
|
|
|
Post #Au2mRkuj7GRc8f5IUC by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder Is that CI job public? Sounds like a lot of projects could benefit from… |
|
|
|
Post #Au2mRl2WeGgOWqjWds by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@elricofmelnibone @bagder It's the spacecheck.pl script in the curl repo:ht… |
|
|
|
Post #Au2mSIDJJBuxPr26XA by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@codecat @bagder https://github.com/curl/curl/pull/17247 |
|
|
|
Post #Au2mZEaZBU1ECVDkTw by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@slotos They would benefit too because they too would have a lot less risk to g… |
|
|
|
Post #Au2mdL0DHRSLFbAoim by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder 🤣🤣🤣 |
|
|
|
Post #Au2mepB2ZqmX7owlN2 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder Can you share this job? I'm really interested in how it's built. |
|
|
|
Post #Au2meyhz8jTwgbQhTE by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@fossunleashed @bagder Unicode confusables might point you the direction. https… |
|
|
|
Post #Au2miC3px6Cgy0BSeu by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@Brokar there are actually lots of tools that do exactly that. Here's one: … |
|
|
|
Post #Au2miZlZodrEUJpDWq by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@kaiserkiwi the job is not cleanly only doing this but is done as part of a bun… |
|
|
|
Post #Au2mszxdHRLKcmQy0W by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@joschi Thank you! |
|
|
|
Post #Au2mu0dcFRlV0wYN3Q by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder @wolf480pl I like that it was hidden behind a force push on a PR touchi… |
|
|
|
Post #Au2muRPMiXPQ2Z5s5g by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@Brokar @bagder Unicode themselves handles this problem: https://www.unicode.or… |
|
|
|
Post #Au2mvPuzk4MPi2Lyim by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder Hmm, now i am curious... might it make sense to pair this with a treesi… |
|
|
|
Post #Au2mvQ25Ji2241fdlw by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@grimmauld possibly, yes. |
|
|
|
Post #Au2mxVRk9wCpQxfSAy by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@Brokar you don't need to browse all fonts when you have Cyrillic layout. T… |
|
|
|
Post #Au2n1CHjLLGRADkBrU by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder rare case where having limited fonts may actually help someone with rea… |
|
|
|
Post #Au3COoHmik84XI7rE0 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@nafmo @fossunleashed @bagder Some Regex engines also provide this.So one could… |
|
|
|
Post #Au3CWGoj2YzV3F5gi8 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder a few years ago when Confusable Homoglyphs where last a popular talking… |
