Two security holes and a new library

jasongill · on June 26, 2018

"Two security holes and a new library" isn't a very descriptive title - even after glancing at the beginning of the message I'm not sure what project this is for

kreetx · on June 27, 2018

The daily journal at the end is a nice read.

git-annex is a tool to track large files in git without tracking their contents (like LFS I guess, though I've never used it).

emj · on June 27, 2018

Thank you I missed those completely.

quote: This is being particularly painful for the android build, [.. with] old libraries [.. and] many follow-on changes, and is not successfully building yet after 5 hours.

Seeing that developers with good domain knowledge have these problems too helps with confidence.

tetrep · on June 26, 2018

an update to the title would be nice. these security holes are for "git-annex" and the new library is "http-client-restricted". i don't think the library's name needs to be in the title, but at least "git-annex" should be.

fsnarskiy · on June 26, 2018

[flagged]

judge2020 · on June 26, 2018

A more descriptive title on HN would have helped - eg "Working on two security holes in git-annex and a new security-focused library", however, the title is what the author decided to name his journal entry and its use as the HN title and is entirely appropriate.