φMar 9
whats the misskey vuln actually imply ? like . what is it . where can i read abt it .
Show threadroseMar 9
@[email protected] I'm not sure if it's fully disclosed yet
Show threadφMar 9
how is it not disclosed if a fix is out ??
Show threadroseMar 9
@[email protected] sharkey doesn't have it in develop yet, and this is a common practice in general
the fix is out, but you need to give instances time to migrate
sure an attacker can read the fix and figure out what the issue was, but by disclosing it and showing a PoC you make it much easier
Show threadjadeMar 9
@r0se @fiore its not in the development branch but im pretty sure it's in stable
Show threadjadeMar 9
@r0se @fiore activitypub.software/TransFem-org/Sharkey/-/commit/fd36256b649618e234ce6f21fbb5aaa643e27f69
merge: Coordinated Security Release: Part 2 (!1275) (fd36256b) · Commits · TransFem.org / Sharkey · GitLab

View MR for information: https://activitypub.software/TransFem-org/Sharkey/-/merge_requests/1275

GitLab
Show threadjade
@r0se @fiore and github.com/misskey-dev/misskey/compare/2026.3.0...2026.3.1
misskey-dev/misskey

🌎 A completely free and open interplanetary-microblogging platform 🚀 - misskey-dev/misskey

GitHub
Mar 9 at 6:49amWeb
Show threadjadeMar 9
@r0se @fiore i think the new comments make this pretty clear lmao