Finding a security bug in CouchDB due to different JSON libraries interpreting repeated keys differently! https://justi.cz/security/2017/11/14/couchdb-rce-npm.html
Related Posts
I'm not a fan of the mastodon web UI behaviour where moving down with cursor keys 'snaps' to the next toot.
Is it possible to disable this, so my cursor keys always move the page by a consistent visual amount?
I've poked in the settings and didn't see anything obvious.
I've just squeezed another 5% of performance out of difftastic by finding a few HashSet values that weren't FxHashSet.
I do wonder whether hash DoS resistance is a good default. Sure, Rust programs are often pretty fast anyway, but it feels like a different threat model to the rest of Rust.
It is remarkably hard to escape command line arguments safely on Windows, and the standard libraries of multiple languages have needed patching: https://flatt.tech/research/posts/batbadbut-you-cant-securely-execute-commands-on-windows/