|
|
|
|
|
|
by bbrennan
3921 days ago
|
|
|
Hahaha thanks guys, great way to wake up in the morning. I'd thought my markdown parser was stripping <script> tags...turns out I was wrong. Probably should have tested. Fortunately, it took about 30 seconds to find and delete the malicious comments using GitHub...point for GitBack. A quick fix is in place with a better one on the way. Next post: How I got hacked by hacker news Update: markdown is now sanitized. Malicious comments restored for posterity |
|
|