Follow

Wow. As we don’t have enough vulnerabilities in open source projects as it is, “researchers” from University of Minnesota introduce more on purpose. To “prove” that it can be done. 🤦‍♂️

Via @rakyll@twitter.com: twitter.com/rakyll/status/1384

· · Web · 1 · 2 · 1

@WPalant
It is extremely sad to see researchers do this... I hope it was reported to the university

@tfardet According to comments, the University’s Institutional Review Board approved this. 🤨

@WPalant @tfardet OK, new license constraint: "If you knowingly submit patches introducing vulnerabilities, this license is revoked"...

Sign in to participate in the conversation
Infosec Exchange

A Mastodon instance for info/cyber security-minded people.