Matthew Garrett on Nostr: Anyone using the Feeld dating app should be aware that it performs client-side ...
Anyone using the Feeld dating app should be aware that it performs client-side filtering - returned responses that are marked "Status: HIDDEN" will be invisible in the UI but visible in the UI response. I reported the original and most egregious example of this over 90 days ago and that was fixed, but there's at least one remaining case where data is leaked that shouldn't be.
Published at
2024-08-01 03:41:01Event JSON
{
"id": "0cf0ee28aa76d93d764041b6c17e6d374b9abba235644418bccad6a9211ae571",
"pubkey": "ef5e80e6c74387ef14f5c6b89079f22b6847dc14365001c0ed662a20bd891677",
"created_at": 1722483661,
"kind": 1,
"tags": [
[
"proxy",
"https://nondeterministic.computer/users/mjg59/statuses/112884689218770250",
"activitypub"
]
],
"content": "Anyone using the Feeld dating app should be aware that it performs client-side filtering - returned responses that are marked \"Status: HIDDEN\" will be invisible in the UI but visible in the UI response. I reported the original and most egregious example of this over 90 days ago and that was fixed, but there's at least one remaining case where data is leaked that shouldn't be.",
"sig": "517fbefe5961d9dab531c315ea591353b768d46bf5c542cb1389e4b70f5b2298a66a2eab3624588b6c678ce0cd4a5273e3e22b28d7bba1fc6789fef27644c3ae"
}
