Hey all, I’m fairly new to the Fediverse.

I’m just wondering what is preventing mallard from being shared on Lemmy, K.Bin, etc. via images or other embeds? Is there some file vetting happening under the hood?

  • Corroded
    link
    fedilink
    English
    91 year ago

    Wasn’t work done not too long ago with emojis or something?

    • ram
      link
      fedilink
      English
      31 year ago

      Custom emoji was one, and another one in July(?) was in sidebars not being sanitized

        • ram
          link
          fedilink
          English
          21 year ago

          Stripped of executable code. IIRC the issue in particular was that sidebars observed HTML and you could put an iframe with potentially malicious code into them.

          • Corroded
            link
            fedilink
            English
            21 year ago

            Interesting. Once the development of Lemmy slows down a couple years from now it would be interesting to see a video detailing the hiccups around its growth

  • Carighan Maconar
    link
    English
    91 year ago

    Yes, all your mallards should be thoroughly vetted.

  • @Synthead
    link
    81 year ago

    Hopefully you’re not using an image reader that’s shitty enough to have vulnerabilities like this 🤨

      • @Synthead
        link
        51 year ago

        I wouldn’t worry about Chrome having vulnerabilities in its image readers.

      • @[email protected]
        link
        fedilink
        English
        11 year ago

        I would say that a zero-day for chrome would be far too valuable. Except you’re the target of an entity that has a few millions to spare.

  • @9point6
    link
    English
    11 year ago

    deleted by creator