mastodon.ie is one of the many independent Mastodon servers you can use to participate in the fediverse.
Irish Mastodon - run from Ireland, we welcome all who respect the community rules and members.

Administered by:

Server stats:

1.6K
active users

#curl

31 posts13 participants2 posts today
Stefan Eissing<p>We have 6 open issues now in curl, 3 of them are handled but waiting for the feature window to open again.</p><p>Optimistic that the release next week will fix this!<br><a href="https://chaos.social/tags/curl" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>curl</span></a></p>
daniel:// stenberg://<p>More views on <a href="https://mastodon.social/tags/curl" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>curl</span></a> vulnerabilities</p><p><a href="https://daniel.haxx.se/blog/2025/07/10/more-views-on-curl-vulnerabilities/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">daniel.haxx.se/blog/2025/07/10</span><span class="invisible">/more-views-on-curl-vulnerabilities/</span></a></p>
Stefan Eissing<p>Started a curl discussion about adding an API call to retrieve information from a curl multi handle.</p><p>If you develop a libcurl application and you need information from a multi, please make your case.<br><a href="https://chaos.social/tags/curl" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>curl</span></a> <br><a href="https://github.com/curl/curl/discussions/17870" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.com/curl/curl/discussio</span><span class="invisible">ns/17870</span></a></p>
daniel:// stenberg://<p>Welcome Karthik Dasari as <a href="https://mastodon.social/tags/curl" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>curl</span></a> commit author 1390: <a href="https://github.com/curl/curl/pull/17864" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">github.com/curl/curl/pull/17864</span><span class="invisible"></span></a></p>
daniel:// stenberg://<p>single-digit number of open <a href="https://mastodon.social/tags/curl" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>curl</span></a> issues...</p>
JP Mens<p><span class="h-card" translate="no"><a href="https://mastodon.social/@bagder" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>bagder</span></a></span> reminds me that when I query an appropriately configured <span class="h-card" translate="no"><a href="https://fosstodon.org/@iscdotorg" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>iscdotorg</span></a></span> BIND9 name server it divulges an (unmaintained) list of authors.</p><p>Does <a href="https://mastodon.social/tags/curl" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>curl</span></a> have a secret option to do likewise? ;-)</p>
daniel:// stenberg://<p>Welcome Eshan Kelkar as <a href="https://mastodon.social/tags/curl" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>curl</span></a> commit author 1389: <a href="https://github.com/curl/curl/pull/17856" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">github.com/curl/curl/pull/17856</span><span class="invisible"></span></a></p>
daniel:// stenberg://<p><span class="h-card" translate="no"><a href="https://social.kernel.org/users/corbet" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>corbet</span></a></span> we keep ftp support in <a href="https://mastodon.social/tags/curl" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>curl</span></a> for readline 😁</p>
daniel:// stenberg://<p>Keeping tabs on <a href="https://mastodon.social/tags/curl" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>curl</span></a>'s memory use</p><p><a href="https://daniel.haxx.se/blog/2025/07/08/keeping-tabs-on-curls-memory-use/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">daniel.haxx.se/blog/2025/07/08</span><span class="invisible">/keeping-tabs-on-curls-memory-use/</span></a></p>
Timo J<p><span class="h-card" translate="no"><a href="https://mastodon.social/@bagder" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>bagder</span></a></span> “<a href="https://mastodon.online/tags/curl" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>curl</span></a> up AI: Quit It”</p>
daniel:// stenberg://<p>Abstract:</p><p>In these days of "vibe coding" and chatbots, users ask AIs for help with everything. Asked to find security problems in Open Source projects, AI bots tell users something that sounds right. Reporting these "findings" wastes everyone's time and causes much frustration and fatigue. Daniel shows how this looks, how it DDoS projects and how totally beyond crazy stupid this is. With examples and insights from the <a href="https://mastodon.social/tags/curl" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>curl</span></a> project.</p><p>----</p><p>Good enough maybe?</p>
daniel:// stenberg://<p>I'm doing a keynote next month at an Open Source conference about AI (abuse) in <a href="https://mastodon.social/tags/curl" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>curl</span></a>'s security program etc. I could use your help:</p><p>1. Give me a clever title<br>2. What details would you like such a talk to contain?</p>
daniel:// stenberg://<p>I think this is slightly better. Shows better how many really old <a href="https://mastodon.social/tags/curl" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>curl</span></a> vulnerabilities we have had reported. Age of the flaw in number of the years on the y-axis, proper date of the report on the x-axis.</p>
Krishean Draconis<p>python's built-in urllib module <em>still</em> doesn't support http2 (nor http3) in the year of 2025, luckily <a href="https://github.com/pycurl/pycurl" rel="nofollow noopener" target="_blank">pycurl</a> exists and supports modern standards </p><p><a href="https://tech.lgbt/tags/python" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>python</span></a> <a href="https://tech.lgbt/tags/pycurl" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pycurl</span></a> <a href="https://tech.lgbt/tags/curl" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>curl</span></a></p>
daniel:// stenberg://<p>I've polished the graph that shows <a href="https://mastodon.social/tags/curl" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>curl</span></a> vulnerability age when they were fixed. With median and average ages added.</p>
daniel:// stenberg://<p>So far in 2025, we have received 52 vulnerability reports submitted to <a href="https://mastodon.social/tags/curl" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>curl</span></a>. Two per week on average.</p><p>5 have been confirmed security problems (and have been published)</p><p>11 were tagged AI slop; all banned and reported to HackerOne</p><p>15 were considered "normal bugs"</p><p>21 were deemed "not applicable" (various reasons)</p>
daniel:// stenberg://<p>Adhere to CI=true environment variable to hide <a href="https://mastodon.social/tags/curl" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>curl</span></a>'s progress bar?</p><p><a href="https://github.com/curl/curl/discussions/17838" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.com/curl/curl/discussio</span><span class="invisible">ns/17838</span></a></p>
daniel:// stenberg://<p>1.Download <a href="https://curl.se" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">curl.se</span><span class="invisible"></span></a> using <a href="https://mastodon.social/tags/curl" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>curl</span></a> built to use OpenSSL (that is over HTTPS in case Mastodon hides the scheme for you)<br>2. count number of allocations made with heaptrack<br>3. pause for gasping<br>4. double-check that curl only does 134 allocs itself, independently of the downloaded size<br>5. check the heaptrack number again</p><p>54,000</p><p>hm</p>
daniel:// stenberg://<p>I posted "writing C for <a href="https://mastodon.social/tags/curl" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>curl</span></a>" just a short while ago, which is relevant to the recent "C mistake" graphs.</p><p><a href="https://daniel.haxx.se/blog/2025/04/07/writing-c-for-curl/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">daniel.haxx.se/blog/2025/04/07</span><span class="invisible">/writing-c-for-curl/</span></a></p>
daniel:// stenberg://<p>You can follow along with the stream of security reports submitted to <a href="https://mastodon.social/tags/curl" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>curl</span></a> by watching the ones we make public:</p><p><a href="https://hackerone.com/curl/hacktivity" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">hackerone.com/curl/hacktivity</span><span class="invisible"></span></a></p><p>Per project policy, we make ALL reports public. (For practical reasons we have so far focused on getting everything submitted during 2025 disclosed. Hackerone has no method to disclose in bulk or automated, so it is a highly manual and tedious process involving a lot of clicks per single report)</p>