@[email protected] to [email protected] • 7 months agoGitHub Is Not Open Source, A Rantlisted.toexternal-linkmessage-square81fedilinkarrow-up1167arrow-down145
arrow-up1122arrow-down1external-linkGitHub Is Not Open Source, A Rantlisted.to@[email protected] to [email protected] • 7 months agomessage-square81fedilink
minus-squarelurch (he/him)linkfedilink1•7 months agoYes, if you want to accept pull requests from anyone, you can set up a jailed git server with public access, for example.
minus-square@[email protected]linkfedilinkEnglish2•7 months agoThat’s not a pull request, but a merge request. Besides the point though. What I’m getting at is: isn’t that asking for trouble? Somebody could while true ; do head /dev/urandom -c 100MB > file.txt git add file.txt git commit -m "new commit" git push done and fill up your hard drive. Also, depending on the protocol, they could try fuzzing it. Or, pipe /dev/urandom into nc and blast your git port. And of course, the first problem is discoverability. Who’s going to find your random, unfederated, git service? It just doesn’t sound like a convincing solution, IMO. Anti Commercial-AI license
minus-squarelurch (he/him)linkfedilink1•7 months agono, it’s not specific to merge requests. theres a tool called git-shell that prevents abuse
Yes, if you want to accept pull requests from anyone, you can set up a jailed git server with public access, for example.
That’s not a pull request, but a merge request. Besides the point though. What I’m getting at is: isn’t that asking for trouble? Somebody could
while true ; do head /dev/urandom -c 100MB > file.txt git add file.txt git commit -m "new commit" git push doneand fill up your hard drive. Also, depending on the protocol, they could try fuzzing it. Or, pipe
/dev/urandomintoncand blast your git port.And of course, the first problem is discoverability. Who’s going to find your random, unfederated, git service?
It just doesn’t sound like a convincing solution, IMO.
Anti Commercial-AI license
no, it’s not specific to merge requests. theres a tool called git-shell that prevents abuse