 |
Post Au9jwZArsGQAwxM0Jc by [email protected] |
 |
More posts by [email protected] |
|
Post #Au96geF9MavNpFm8u0 by [email protected] |
|
0 likes, 4 repeats |
|
|
|
Detecting malicious Unicode in #curlhttps://daniel.haxx.se/blog/2025/05/16/dete… |
|
|
|
Post #Au96geOMoKIUHq5VGi by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@bagder since Michael Hanley (previous GitHub CISO) left for GE, do they have a… |
|
|
|
Post #Au9QAvHUTpn4U41Ia8 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@daniel:// stenberg:// We are the curl project. We can do better.Love that atti… |
|
|
|
Post #Au9QDFB5TYEMlu8Daq by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder damn, I thought gitea was overly sensitive about this, but I hadn't… |
|
|
|
Post #Au9QG8aoPoAPDWXn2e by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@badsamurai I have made GitHub aware of how I consider this a flaw in their sit… |
|
|
|
Post #Au9QHnDIsDYxURKyCO by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder Vulnerabilities happen. The team seems to be on top of things so cheers. |
|
|
|
Post #Au9QHy4UVK39AIIaUS by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder maybe there is a sufficiently high dimensional electric field whose cur… |
|
|
|
Post #Au9YrlzDiFDdk5Pww4 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder > Or perhaps they are all just too busy implementing the next AI fea… |
|
|
|
Post #Au9aes5PvCuAnxI9tA by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@bagder would be not fun if that was a dark side of github... |
|
|
|
Post #Au9bso0ZyqRkAJElyy by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder Thinking about how you could make a fork of a repo masqeuade as the ori… |
|
|
|
Post #Au9btHFTGYacqtQZii by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder Just opened a ticket to implement this on company level. I suppose that… |
|
|
|
Post #Au9js65I5WN5ZRc8fI by [email protected] |
|
0 likes, 0 repeats |
|
|
|
GitHub has told me they have raised this as a security issue internally and the… |
|
|
|
Post #Au9js6D5cWbrxdGMoy by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder good to hear! |
|
|
|
Post #Au9jwZArsGQAwxM0Jc by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder That reminds me of the case where a colleague had issues applying a log… |
|
|
|
Post #Au9mouTH6o1MXy0KbQ by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@elmuerte for curl we nowadays check for and warn if a unicode double-quote is … |
|
|
|
Post #Au9mubfXvYaDyFScEq by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder That's great. I guess we're at the point where we need non-asci… |
|
|
|
Post #Au9uNBd2WVjTHira76 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@bagder thank you for writing about your learnings (as always) that is how othe… |
|
|
|
Post #AuC3D0czrAlEAsz7Vg by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@[email protected] This is interesting to me. I remember one time @SeanOMi… |
|
|
|
Post #AuC3NIqAzuOLYW3ed6 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder @sebsauvage In 2018 I raised a similar issue (arguably worse), but they… |
|
|
|
Post #AuC3xl6zMagzf7IzbM by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@[email protected] @[email protected] Because of shit like this I have… |
|
|
|
Post #AuC3yddocl2KmZ4yGW by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bagder I believe the general term for this is a homoglyph attack, and it was o… |
|
|
|
Post #AuC4R8VlRXW6dHtzXM by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@richardwonka @bagder yeah. Hopefully not like back in their good old days wher… |
