• 0 Posts
  • 57 Comments
Joined 1 年前
cake
Cake day: 2023年6月8日

help-circle









  • It’s interesting, that it would be hard to make a case that there was a “vulnerability” in the ip package. But it seems like this package’s entire purpose is input validation so it’s kind of weird the dev thinks otherwise.

    Yes, input validation, probably for forms. What the Dev disputes is that he cannot see a case where it is used in a security critical way where

    1. the input format is unknown and
    2. it is essential to know if the IP is public or private.