[gchamonlive]

Ever considered these aren't the full set of exploits the researcher discovered? Or that he can find more since he found these? If I found a bunch, I'd certainly withhold a few as insurance.

[thewebguyd]

He's claimed that he has more as well. He seems to have a personal vendetta against Microsoft going by his blog, said nothing will be released in June but will in July: https://deadeclipse666.blogspot.com/2026/05/july-14th.html

[Aurornis]

Sure, but GitHub and Gitlab aren’t the only two ways to share code on the Internet. The conspiracy theories about two unrelated companies shutting down his git accounts to prevent him from releasing these supposed exploits are reaching pretty deep into conspiracy theory nonsense. The conspiracy theories can’t even agree if he was banned for posting them or because he hadn’t posted them but might post them.

[yieldcrv]

time to post on IPFS

[snvzz]

Sadly, IPFS is compromised[0].

0. https://specs.ipfs.tech/ipips/ipip-0383/

[gchamonlive]

What does this mean and compromised in which sense?

[yieldcrv]

They’re pointing out a proposal that some nodes can block pins, resulting in censorship

and that censorship at all would compromise the point of IPFS

although I disagree with both of those takes. Nodes always had discretion in IPFS, just pick a different node or pin something yourself which has pretty much always been required. Everyone can route to your pinned files while pinned.

[gchamonlive]

Ah! Ok, when I read compromised I thought it was a proposal that introduced a security vulnerability to the tech. Thanks!

[nazgulsenpai]

I can see a situation where Microsoft contacted federal law enforcement to strongarm both GitLab and GitHub. But I believe all megacorps are one giant government conspiracy so consider the source.

[thfuran]

At this point, the government is a megacorp conspiracy.

[gchamonlive]

Is Gitlab also part of this? This is disappointing but unsurprising :(