As some of you might know, I'm a big fan of Bunny.net.

I use them for my static site hosting and CDN. Just saw they launched a new project called hop-js for #FOSS / #OpenSource projects.

https://bunny.net/blog/introducing-hop-js-a-safe-free-cdn-for-open-source-projects-without-the-privacy-tax/

And if you are looking to change hosting providers or CDN (like from Cloudflare or Github Pages, etc), please consider using my referral code. Thank you for supporting #BurgeonLab

https://bunny.net/?ref=k4vc3x5108

#Bunnynet #bunnycdn #cdn #staticsite #ssg #webhosting #jsdelivr #cdnjs #npm

Using my #Firefox addon Text Encryptor, you can encrypt confidential messages as easy as never before with #AES – the most secure #encryption algorithm in the world!

 Download
 Source Code hosted @codeberg #Codeberg
🌐 Translate on #Weblate

As you might have noticed, Mozilla had taken it down a few months ago, because it contained a minified version of Evan Vosberg's #CryptoJS library from #cdnjs. Due to my schedule I hadn't been able to fix this before #Mozilla's deadline.

However, yesterday, I've finally had time to re-implement CryptoJS using the #bower package manager and to submit a new version of #TextEncryptor – which, in fact, was approved today!

A few years ago, #Cloudflare went down... a few months ago, #Fastly went down... today, #Akamai went down...

God, I love how people are just not learning anything from the past :^)
I'm just gonna say it...
The next major web outage will be caused by either #CloudFront, #cdnjs or #JSDelivr.

"Remote code execution in cdnjs of Cloudflare"

Tl;Dr: Path traversal on tgz archives mirrored by CDNjs.

https://blog.ryotak.me/post/cdnjs-remote-code-execution-en/ @[email protected] #bugbouty #pentest #rce #vulnerability #cloudflare #cdnjs