daniel:// stenberg://Mar 9

#curl is at 60% quality accordingly

https://insights.linuxfoundation.org/project/curl/repository/curl-curl/security

Curl curl-curl Repository Security | LFX Insights

Check Curl curl-curl security and best practices, including vulnerabilities, dependencies, licensing, and governance compliance.

Show threaddaniel:// stenberg://Mar 9
in case it doesn't show: there was a sarcastic tone in that toot
syaochanMar 9
Show threaddaniel:// stenberg://
"Suspected binaries found in the repository" ... then lists like a thousand text files. 😂
Mar 9 at 12:54pmWeb
Show threadJulien / SphinxMar 9

@bagder I was about to mention that

what a ....show

Show threadsotolfMar 9
@bagder THANKS are 100% a binary file as well as FAQ!
Show threadsotolfMar 9
@bagder well I mean, they do consist of binary they do, but then my question is what is not binary then.
Show threadmikoMar 9
@bagder omfg
Show threadKroppebMar 9
@bagder Seems like it's just checking the extension :/
Show threadBurak GürsoyMar 9
@bagder the times have changed. You are a fan of AI now.
Show threadPoul-Henning KampMar 9

@bagder

You probably used some heathen foreign character set instead of the ASCII :-)

Show threadmlenMar 9
@bsdphk @bagder They must be checking the extension or lack of thereof. Clearly, no extension must mean binary, sigh.
Show threadStéphanieMar 9
@bagder I would wager that these were "identified" as binaries because they don't have an extension. Which… ​​
Show threadSuperIluMar 9
@bagder And then they don't even work! I just tried to run FAQ.exe and it didn't answer a single of my questions!!one!eleven! 🤡
Show threadOzzelot Mar 9
@dec_hl
Of course the FAQ doesn't answer questions, logically its only duty is to list them. You seek FQA (Frequently Questioned Answers), as per 9front.
@bagder
Show threadHenri SivonenMar 9
@bagder For ICU4X it claims a binary called headerFile and fails to complain about a checked-in wasm library.
Show threadstratomMar 9
@bagder To the best of my knowledge they are using https://github.com/ossf/pvtr-github-repo-scanner to check these controls.
GitHub - ossf/pvtr-github-repo-scanner: Privateer plugin for scanning the security hygiene of a GitHub repository.

Privateer plugin for scanning the security hygiene of a GitHub repository. - ossf/pvtr-github-repo-scanner

GitHub