Tootfinder

Opt-in global Mastodon full text search. Join the index!

@adlerweb@social.adlerweb.info
2025-12-03 16:12:35

Uff. Wenn man #curl in #powershell nutzt (aka: nicht das echte curl, sondern ein Wrapper von #Microsoft), dann wird zurückgegebenes Javascript einfach ohne Rückfrage ausgeführt. Was kan…

curl disclosed on HackerOne: runs javascript on powershell when it...
On windows, if I run a curl on powershell for a script that should show (script)alert(1)(/script) it just executes the script when it shouldn't. I did not use AI to find or report this bug. ## Affected version on CMD I ran curl --version `curl 8.16.0 (Windows) libcurl/8.16.0 Schannel zlib/1.3.1 WinIDN` on powershell it didn't recognise the --version flag. I haven't installed any specific curl...

@kurtsh@mastodon.social
2026-01-08 06:50:14

Ever seen a squirrel curl up & sleep... much less snore? 😁
▶️ Soaking Wet Squirrel Seeks Shelter, Snores All Night Long
youtube.com/watch?v=ZI5mBS1jhj

@almad@fosstodon.org
2026-01-27 00:18:21

“Time and energy that is completely wasted while also hampering our will to live.”
I can relate.
daniel.haxx.se/blog/2026/01/26

The end of the curl bug-bounty
tldr: an attempt to reduce the terror reporting. There is no longer a curl bug-bounty program. It officially stops on January 31, 2026. After having had a few half-baked previous takes, in April 2019 we kicked off the first real curl bug-bounty with the help of Hackerone, and while it stumbled a bit at first … Continue reading The end of the curl bug-bounty →

@unixorn@hachyderm.io
2025-12-07 18:58:31

See how tightly she has to curl up, there are too many people on her couch there’s barely enough space for Cat

@kubikpixel@chaos.social
2026-01-25 07:35:11

Overrun with AI slop, cURL scraps bug bounties to ensure "intact mental health"
The onslaught includes LLMs finding bogus vulnerabilities and code that won’t compile. The project developer for one of the Internet’s most popular networking tools is scrapping its vulnerability reward program after being overrun by a spike in the submission of low-quality reports, much of it AI-generated slop.
🤖

Overrun with AI slop, cURL scraps bug bounties to ensure "intact mental health"
The onslaught includes LLMs finding bogus vulnerabilities and code that won't compile.

@eana@s.1a23.studio
2026-01-08 05:58:07

Workout of the day.

Recent workout Barbell Row, Bent Over (Standing) 155lbs×8, 155lbs×8, 155lbs×8, 155lbs×8, 155lbs×8 Cable Overhead Triceps Extension, Rope Press (Standing) 80lbs×8, 80lbs×8, 80lbs×8, 80lbs×8, 80lbs×8 Dumbbell Overhead Extension, One Arm (Seated) 50lbs×8, 50lbs×9, 50lbs×8, 50lbs×8, 50lbs×8 Lat Pulldown to Chest, Wide Grip (Seated) 180lbs×8, 180lbs×8, 180lbs×8, 180lbs×8, 180lbs×8 Machine Arm Extension (Seated) 160lbs×8, 160lbs×8, 160lbs×8, 160lbs×8, 160lbs×8 Machine Biceps Curl (Seated) 48nul…
@Erikmitk@mastodon.gamedev.place
2026-01-07 08:12:26

RE: mastodon.social/@MannyCalavera
Curl into a remote fist to punch fascists in the face!

@BBC6MusicBot@mastodonapp.uk
2026-01-11 15:45:23

🇺🇦 #NowPlaying on #BBC6Music's #GuyGarveysFinestHour
Bridget St. John:
🎵 Curl Your Toes
#BridgetStJohn
open.spotify.com/track/4lyz4vC

@daniel@social.telemetrydeck.com
2026-02-03 16:34:48

It is 2025 and projects want me to curl an url to install. #dontcurlthaturl

@andres4ny@social.ridetrans.it
2026-02-04 19:50:20

Two cats (Clove & Erie) were sleeping next to me in bed. Twig, who is the youngest cat of the group, hops on the bed and wakes them both up by BITING THEIR FACES, one at a time. Then he's like "let's cuddle!", tries to curl up next to them, and they both hiss/swat at him.
Now he's downstairs, meowing/crying loudly. What a doofus!
#CatDrama

@Techmeme@techhub.social
2026-01-22 19:25:55

The curl project plans to end its HackerOne bug bounty program at the end of January, citing a surge in low-quality AI-generated vulnerability reports (Lawrence Abrams/BleepingComputer)
bleepingcomputer.com/news/secu

@ethanwhite@hachyderm.io
2026-02-03 20:41:21

"A package’s value isn’t primarily its implementation code. Anyone can rewrite curl in Rust in a weekend, as Daniel Stenberg has heard many times. What they can’t rewrite is the twenty years of bug reports, the weird edge cases someone hit in production and took the time to fix, the arguments in issue threads that eventually settled on the right behavior. That knowledge is spread across the package’s history and it grew organically. No prompt captures it."
nesbitt.io/2026/01/30/will-ai-
Excellent piece by @…

@catsalad@infosec.exchange
2026-01-28 16:59:59

curl 3.11 for Workgroups

@metacurity@infosec.exchange
2026-01-21 14:55:21

Don't miss today's packed Metacurity for the most critical infosec developments you need to know, including
--DOGE workers shared SSN data with outsiders, derailed DISA operations,
--UK launches national fraud reporting service,
--China blames Taiwan for cyberattacks,
--EU proposes freezing out Chinese tech suppliers,
--New Zealand launches Manage My Health breach probe,
--Curl ends its bug bounty program due to AI flood,
--Cloudflare fixes WAF…

DOGE workers shared SSN data with outsiders, derailed DISA operations
UK launches national fraud reporting service, China blames Taiwan for cyberattacks, EU proposes freezing out Chinese tech suppliers, New Zealand launches Manage My Health breach probe, Curl ends its bug bounty program due to AI flood, Cloudflare fixes WAF flaw, much more

@khalidabuhakmeh@mastodon.social
2026-01-30 13:24:46

I'm going to put on a Hawaiian shirt, curl into a fetal position, and play "Walking on Sunshine" on a continuous loop until I believe it's warmer than it actually is. It's gotta work.

@kexpmusicbot@mastodonapp.uk
2025-11-18 07:30:05

🇺🇦 #NowPlaying on KEXP's #VarietyMix
Laika:
🎵 Shut Off / Curl Up (Cabbage Boy Remix)
#Laika
laikaofficial.bandcamp.com/tra
open.spotify.com/track/7nBNm9t

@cyrevolt@mastodon.social
2025-12-31 13:17:18

"strncpy() is a weird function with a crappy API."
good thing I don't do C 🙃
Seriously though - projects defining their own strc(o)py do mean flaws in a standard library.
daniel.haxx.se/blog/2025/12/29

no strcpy either
Some time ago I mentioned that we went through the curl source code and eventually got rid of all strncpy() calls. strncpy() is a weird function with a crappy API. It might not null terminate the destination and it pads the target buffer with zeroes. Quite frankly, most code bases are probably better off completely … Continue reading no strcpy either →

@Sythelux@social.tchncs.de
2026-02-03 11:07:38

I wonder if there is a list of websites that support
curl -H "Accept: text/markdown" aka serving markdown directly.
then there could actually be a "browser" on remarkable tablets.
I also still wonder how firefox does the "read mode"

@theodric@social.linux.pizza
2026-02-02 10:09:04

Idea: a moltbot that agentically finds shell scripts online and `curl | bash`es them as root to see what they do

@whitequark@mastodon.social
2025-12-24 02:46:25

here's my new solution for "i need to send a file to someone and i really don't want them to need anything but the browser"
unsurprisingly, it uses codeberg.org/git-pages/git-pag

# git-pages fileshare() ( shopt -s nullglob local host=https://upload.whitequark.org/ local tmpdir=$(mktemp -d) local prefix=$(date +%s)- for file in "$@"; do cp $file $tmpdir/$prefix$(basename $file) echo $host$prefix$(basename $file) done cd $tmpdir tar c * | curl -T - \ -X PATCH \ -H 'Atomic: no' \ -H 'Content-Type: application/x-tar' \ -H 'Authorization: Pages xxxxx' \ $host )
@eana@s.1a23.studio
2026-01-01 00:40:52

Last workout of the year.

Recent workout Cable Face Pull 72lbs×8, 72lbs×8, 72lbs×8, 72lbs×8, 72lbs×8 Cable Overhead Triceps Extension, Rope Press (Standing) 80lbs×8, 80lbs×8, 80lbs×8, 72lbs×8, 72lbs×8 Dumbbell Alternating Biceps Hammer Curl (Seated) 90lbs×8, 90lbs×8, 90lbs×8, 90lbs×8, 90lbs×8 Dumbbell Biceps Hammer Curl (Standing) 85lbs×8, 85lbs×8, 85lbs×8, 85lbs×8, 85lbs×8 Dumbbell Overhead Extension, One Arm (Seated) 50lbs×8, 50lbs×9, 50lbs×8, 50lbs×8, 50lbs×8 Dumbbell Shoulder Arnold Press (Seated) 120lbs×8, 12…
@lapizistik@social.tchncs.de
2026-01-19 17:31:54

Ok, das hatte ich auch noch nicht:
Mein Mailprogramm konnte plötzlich nicht mehr zu em bestimmten Mailkonto¹ verbinden. Kommt vor. Ich betreib den Server selbst, mach mich also an's Debuggen, seh aber nichts in den Logs.² Ich schau in die Fehlerkonsole, probier curl³, telnet, … keine Ausgaben, einfach keine Verbindung.
Im lokalen Subnetz des Servers geht IMAP, auch per Proxy, nur von mir zu Hause nicht. Also bau ich ein VPN, und hoppla, curl über IPv6 geht, über IPv4 nicht…<…

@x_cli@infosec.exchange
2025-11-12 07:52:28

Welp, from my PoV, all sides are wrong.
There is a difference between bug reports generated by AI to spam curl devs and AI generated bug reports sent by Google to FFmpeg devs that are accurate. Calling them slop is hardly true.
"We would rather not know there is a vulnerability in our software" is a terrible take.
Also, I would like to say that maybe it is unreasonable for a software with so little funding to want to support all codecs that were ever invented becaus…

@philip@mastodon.mallegolhansen.com
2026-01-12 15:58:04

@… Well, are we sure no intelligence agency is so interested in curl that they’re making backups of your emails as well? 😂

@catsalad@infosec.exchange
2025-12-18 09:44:11

Dora, the kitten, likes to nap in bowls. You might even say it's adorable...

Photo of a small kitten that decided to curl up and sleep in someone's used bowl on the kitchen table. Why pay for a bed and breakfast, when you can just sleep on your food?
@eana@s.1a23.studio
2025-12-22 01:52:37

Workout of the day.

Recent workout Dumbbell Biceps Hammer Curl (standing) 80lbs×8, 80lbs×8, 80lbs×8, 80lbs×8, 80lbs×8 Dumbbell Lateral Raise (standing) 70lbs×8, 70lbs×8, 70lbs×8, 70lbs×8, 60lbs×8 Machine Arm Extension (Seated) 160lbs×8, 160lbs×8, 160lbs×8, 160lbs×8, 160lbs×8 Overhead Both Arm Dumbbell Triceps Press (seated) 75lbs×8, 75lbs×8, 75lbs×8, 75lbs×8, 75lbs×8 Pulley Machine Rope Triceps Press (standing) 75lbs×8, 75lbs×8, 75lbs×8, 75lbs×8, 75lbs×8 Scott Machine Biceps Curl (seated) 100lbs×8, 100lbs×8,…
@eana@s.1a23.studio
2025-12-24 21:52:40

Workout of the day.

Recent workout Barbell Squats (standing) 225lbs×8, 225lbs×8, 225lbs×8, 225lbs×8, 225lbs×8 Leg Press Machine (Seated) 154kg×8, 154kg×8, 154kg×8, 154kg×8, 154kg×8 Leg Press Machine, Wide Feet (incline) 598lbs×8, 598lbs×8, 598lbs×8, 598lbs×8, 598lbs×8 Machine Calf Raise (standing) 360lbs×8, 360lbs×8, 360lbs×8, 360lbs×8, 360lbs×8 Machine Leg Curl (prone) 59null×8, 59null×8, 59null×8, 59null×8, 59null×8 Machine Leg Extension (seated) 140lbs×8, 140lbs×8, 140lbs×8, 140lbs×8, 140lbs×8 Machine Le…
@eana@s.1a23.studio
2025-12-24 21:52:39

Workout of the day.

Recent workout Barbell Squats (standing) 225lbs×8, 225lbs×8, 225lbs×8, 225lbs×8, 225lbs×8 Leg Press Machine (Seated) 154kg×8, 154kg×8, 154kg×8, 154kg×8, 154kg×8 Leg Press Machine, Wide Feet (incline) 598lbs×8, 598lbs×8, 598lbs×8, 598lbs×8, 598lbs×8 Machine Calf Raise (standing) 360lbs×8, 360lbs×8, 360lbs×8, 360lbs×8, 360lbs×8 Machine Leg Curl (prone) 59null×8, 59null×8, 59null×8, 59null×8, 59null×8 Machine Leg Extension (seated) 140lbs×8, 140lbs×8, 140lbs×8, 140lbs×8, 140lbs×8 Machine Le…