Nemo_bis 🌈: "@bagder I can't parse the sent…" - Mamot - Le Mastodon de La Quadrature du Net

Recent searches

Search options

Only available when logged in.

daniel:// stenberg:// @bagder@mastodon.social

Do you think this is fair?

"Problems that only trigger using legacy dependencies are not considered security problems."

https://github.com/curl/curl/pull/16086

GitHubVULN-DISCLOSURE-POLICY: on legacy dependencies by bagder · Pull Request #16086 · curl/curlBy bagder

Nemo_bis @nemobis@mamot.fr

@bagder I can't parse the sentence. Does the problem trigger the use of the dependency, or vice versa?

Jan 25, 2025, 11:14 AM··Web

0boosts·0favorites

daniel:// stenberg:// @bagder@mastodon.social

@nemobis if there is a problem in curl, but it needs this legacy dependency to trigger

Proxfox Virtual Environment @tay@tech.lgbt

@bagder @nemobis if you can i think it'd be fine just to throw up a compiler warning (if that possible, i dont write much C), for awareness but i dont think putting effort into resolve it is fine

RealGene @RealGene@hachyderm.io

@nemobis @bagder
Agreed, I had to read it a few times.
"Problems that are triggered by…" is more appropriate grammar.

Drag & drop to upload