[mulmen]

Isn't embedding QR codes the reason they were created in the first place? It's an optical data format designed to be easy for computers to read.

You're basically evaluating the cryptographic merits of CSV.

[sitkack]

> You're basically evaluating the cryptographic merits of CSV.

I am not. I am weighing features vs unintended harm. Yes, the airlines shouldn't be including this data in the barcodes. It is improper to expose end users to this liability. And simply telling them not to expose them isn't a solution.

But if FB can detect harmful barcodes in an image, by all means they should remove the photo.

This is no different than Github scanning for AWS creds or MongoDB passwords in repos.

[always_good]

>This is no different than Github scanning for AWS creds or MongoDB passwords in repos.

But Github doesn't do that either.

Amazon pays a contractor to scan Github repos for keys.

[FabHK]

Is there any data in the barcode that's not also printed (in plain text) on the boarding pass?

[sitkack]

There is, that is issue. DoB specifically which in the US is used (dumbly) as PII.

[bogomipz]

Yes, they were meant for efficient consumption. The 'Q" is for quick.