mleku on Nostr: i have kinda sorta released #realy but kinda sorta not... it needs code review, ...
i have kinda sorta released #realy but kinda sorta not... it needs code review, refactoring, probably a lot of documentation, but i just don't have the time for it as a "lone wolf" working on it, and it still seems to not work properly with a lot of clients
this does seem to be mostly the clients fault for their weak auth implementation, i think at this point the most solid auth code is in nostrudel applesauce and coracle's libraries
i do like to shout out to them for this, most recently doing so turned out to be quite incendiary for starting some discusison, no idea how serious any of the follow up is going to be tho... let's just say i'm extremely cynical that they will not care because most users will be using free spamfest relays with CSAM and no moderation or serious care to address exploits of their vulnerabilities
i think it's like you say SilberWitch (nprofile…mm8q) there is a big problem with one man bands in nostr dev and because nothing gets double checked, this one thing alone, let alone the rest of the benefits of a heterogenous group of developers working together, is partly why there is this proliferation of a billion prototypes
they just get stuck, bored, and start some other thing that was further down their bucket list of dev achievements and the rest rots
this does seem to be mostly the clients fault for their weak auth implementation, i think at this point the most solid auth code is in nostrudel applesauce and coracle's libraries
i do like to shout out to them for this, most recently doing so turned out to be quite incendiary for starting some discusison, no idea how serious any of the follow up is going to be tho... let's just say i'm extremely cynical that they will not care because most users will be using free spamfest relays with CSAM and no moderation or serious care to address exploits of their vulnerabilities
i think it's like you say SilberWitch (nprofile…mm8q) there is a big problem with one man bands in nostr dev and because nothing gets double checked, this one thing alone, let alone the rest of the benefits of a heterogenous group of developers working together, is partly why there is this proliferation of a billion prototypes
they just get stuck, bored, and start some other thing that was further down their bucket list of dev achievements and the rest rots