Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
kelnos
on Feb 14, 2024
|
parent
|
context
|
favorite
| on:
Freenginx: Core Nginx developer announces fork
If the feature is in the code that's downloaded, regardless of whether or not the build process enables it by default, the code is definitely being shipped.
ramses0
on Feb 14, 2024
|
next
[–]
BRB, filing CVE's against literally any project with example code in their documentation...
MZMegaZone
on Feb 15, 2024
|
parent
|
next
[–]
That's actually supported by the CVE program rules. Have at it if you find examples with security vulns.
spicykraken
on Feb 14, 2024
|
parent
|
prev
|
next
[–]
I've actually seen CVEs like that before, I agree that's bonkers but I have seen it...
numbsafari
on Feb 15, 2024
|
root
|
parent
|
next
[–]
Given how frequently people copy and paste example code… why is that surprising? Folks need to be informed. CVEs are a channel for that.
mholt
on Feb 15, 2024
|
root
|
parent
|
next
[–]
Pssst: People who copy+paste example code aren't checking CVEs
anon-sre-srm
on Feb 14, 2024
|
prev
[–]
Yes. It's no different from any optional feature. Actual beta features should only be shipped in beta software .
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
