daniel:// stenberg:// 1 month ago slip slop slap HackerOnecurl disclosed on HackerOne: Path Traversal Bypass in file:// URLs...## Summary: The `dedotdotify()` function in `lib/urlapi.c` is responsible for removing path traversal sequences (`../` and `./`) from URLs accordi...
daniel:// stenberg:// 1 month ago Please stop using AI when responding. It is enough if you answer with no more than 20 lines. The rest is just word sallad. *shakes fist in the air*
daniel:// stenberg:// 1 month ago Microsoft will pay bug bounties even for 3rd party components: Microsoft now buys bugs, with or without a bounty program: Critical vulnerabilities found in third-party applications eligible for award under 'in scope by default' move
daniel:// stenberg:// 1 month ago My week: [Daniel's week] December 13, 2025 Security, AI, FOSDEM, 40K stars, rc1, URLs, AIxCC, mallocs
