Conversation

Notices

Embed this notice
Codeberg.org (codeberg@social.anoxinon.de)'s status on Monday, 01-Apr-2024 06:38:38 JST Codeberg.org
in reply to

To people looking for an archive of the XZ code, you might want to check out https://tukaani.org/xz-backdoor/ which links to https://git.tukaani.org/. GitHub is not the only source of truth, although meta information about the Pull Requests is locked in to this silo.
In conversation about a year ago from social.anoxinon.de permalink
Attachments
1. No result found on File_thumbnail lookup.
  
  XZ Utils backdoor
  
  from Lasse Collin
2. No result found on File_thumbnail lookup.
  
  git.tukaani.org
- Haelwenn /элвэн/ :triskell: likes this.
- Embed this notice
  Codeberg.org (codeberg@social.anoxinon.de)'s status on Monday, 01-Apr-2024 06:38:39 JST Codeberg.org
  
  If there was malicious code in a legitimate project hosted on #codeberg, would we remove access to it, including for security researchers?
  Short: No!
  We are considering how to prevent fetching malicious code by accident, though.
  In any case, we are open to collaborating with security researchers. Interested? Help us build a malware hunting team: https://codeberg.org/Codeberg/Contributing/issues/44
  Background: #GitHub locked access to source code of xz, which was background of active investigation from the community.
  In conversation about a year ago permalink
  Attachments
  1. No result found on File_thumbnail lookup.
    
    though.in - このウェブサイトは販売用です！ - though リソースおよび情報
    
    このウェブサイトは販売用です！ though.in は、あなたがお探しの情報の全ての最新かつ最適なソースです。一般トピックからここから検索できる内容は、though.inが全てとなります。あなたがお探しの内容が見つかることを願っています！
  2. Untitled attachment
    
    Invalid filename.
  this.ven repeated this.

Public

Conversation

Notices

Feeds