Wow. As we don’t have enough vulnerabilities in open source projects as it is, “researchers” from University of Minnesota introduce more on purpose. To “prove” that it can be done. 🤦‍♂️


· · Web · 1 · 2 · 1

It is extremely sad to see researchers do this... I hope it was reported to the university

@tfardet According to comments, the University’s Institutional Review Board approved this. 🤨

@WPalant @tfardet OK, new license constraint: "If you knowingly submit patches introducing vulnerabilities, this license is revoked"...

Sign in to participate in the conversation
Infosec Exchange

A Mastodon instance for info/cyber security-minded people.