Y
Hacker News
new
|
ask
|
show
|
jobs
by
etyp
519 days ago
Seems reasonable enough, but why would it (allegedly) send environment variables back via a POST? Even if it's entirely in good faith, I'd rather some random package not have my `env` output..
1 comments
guappa
517 days ago
Not allegedly. They confirmed it themselves.
https://snyk.io/blog/snyk-security-labs-testing-update-curso...
link
https://snyk.io/blog/snyk-security-labs-testing-update-curso...