Skip to main content

Search

Items tagged with: curl


1. do not assume that URLs will be treated the same cross user-agents.

2. do not assume that IPv4-mapped IPv6-addresses can be written in octal.

Another day. Another security report against #curl we could close.

hackerone.com/reports/2493548

#curl


"To me, the latest is the latest my OS provides me. If #curl maintainers dont care about pushing the latest into the OSes they support, it's not me to blame. I think curl maintainers should push Centos to provide the latest to all users. What's the purpose of you fixing multiple bugs and security holes if you dont spend time to make it available to the broader audience?"

We are obviously all just too lazy.

github.com/curl/curl/issues/13…

#curl


It is soon time for the annual #curl user survey. Anything in particular I need to remember to ask this time around? curl.se/mail/lib-2024-05/0008.…
#curl


In #curl, we are back discussing deprecating TLS libraries without 1.3 support: github.com/curl/curl/pull/1354…
#curl


only 3 severity high vulnerabilities in #curl during the last 5 years

(slide from my curl security talk I did over the weekend)

#curl


CURL Up 2024

The second day of the curl-up conference is about to start.

Learn more about #CURL. Live streamed on Twitch (twitch.tv/curlhacker).

github.com/curl/curl-up/wiki/2…

#curl


Did you notice how speed in #CURL changed for HTTP/2 in the last releases?

Thanks Stefan for your work!

#curl


CURL Up 2024

The curl-up conference is about to start soon with Daniel Stenberg @bagder welcoming the #opensource developers of the #CURL project.

Learn more about CURL. Live streamed on Twitch (twitch.tv/curlhacker).

github.com/curl/curl-up/wiki/2…


I talked about #curl and #rust on the podcast "rust in production":

corrode.dev/podcast/s02e01-cur…


Two laptops, webcam on stand, mike, mike-stand, power for laptops, cable kit, repair kit, 12 curl mugs, eight packs with different curl stickers, carton coasters, pcb coasters, t-shirts, name tags + pens, two UCB-C to HDMI adapters

Preparing for #curl up 2024.

github.com/curl/curl-up/wiki/2…

#curl


My "predicting the future" slide, used in several presentations over the last few years. It involves #curl.

"everything will be networked"

#curl


Welcome fuzzard as #curl commit author 1266: github.com/curl/curl/pull/1349…
#curl


How many authors have their contributions in #curl product source code? How many have had their previous work completely removed. Over time.

The first #curl release with code present authored by 200 persons was done in 2015-04-22. In that release, we had already removed all traces of contributions from 20 authors.

In the latest release, 604 authors' code is still present. 171 authors' work have been replaced.

#curl


@gary_alderson I think you can expect me and not too many others to obsess and speak about historical #curl events and changes.


I like to run curl on _all_ my devices #Linux #curl #Garmin


Welcome Johann Sebastian Schicho as #curl commit author 1265: github.com/curl/curl/pull/1347…
#curl


Awesome, so much to learn wrt. libcurl! 😍 Posting links below in case anyone is looking for them ✨

📺 Getting started with libcurl

youtube.com/watch?v=aS2eJDA5nS…

📺 Mastering libcurl

youtube.com/watch?v=ZQXv5v9xoc…

youtube.com/watch?v=9KqnXsSxqG…

#curl #libcurl


In 10 days (at #curl up 2024) I will do this presentation - out of which I seem to already have about 100 slides prepared...
#curl


with all due respect this sounds like a confusing cli argument design. I am the one doing it wrong :’) I personally can never remember all the #curl arguments, only the most commonly used ones, and -X is one that is easy to remember and can be used for many occasions. Maybe the solution should be to prefer -X always and a separate argument for whether the redirects should follow explicitly given method
#curl


Welcome Gusted as #curl commit author 1264: github.com/curl/curl/pull/1343…
#curl


bonus graph: fixed/introduced vulnerabilities in #curl over time:
#curl


Today we celebrate the five year anniversary of #curl's bug-bounty. It has resulted in 69 reported vulnerabilities and almost 80,000 USD payouts. Out of a total of 439 submissions. 86 of them were considered "informative", which mostly means they were handled as normal bugs.

Submit your suspected curl securirty issue here: hackerone.com/curl

#curl


Welcome Abdullah Alyan as #curl commit author 1263: github.com/curl/curl/pull/1343…
#curl


Apparently San Francisco gets to enjoy #curl command lines in ads...
#curl


They fit excellently on the #curl cheat sheet coaster...
#curl


This box landed on my doorstep. The #curl up 2024 preparations continue!
#curl


If you use brew’s curl on macOS, are you really using it? I installed and had curl setup a couple of years ago. Today it appears that curl was now pointing to Apple’s version, which has this issue (daniel.haxx.se/blog/2024/03/08…). Looks like brew doesn’t add a symlink for curl to /opt/homebrew/bin. Running `ln -s /opt/homebrew/opt/curl/bin/curl /opt/homebrew/bin` resolved the issue.

#macos #curl #security


#TLS #EncryptedClientHello #ECH support has been merged in #curl!

github.com/curl/curl/pull/1192…


Welcome Jiwoo Park as #curl commit author 1262: github.com/curl/curl/pull/1339…
#curl


Recent additions to the #CURL project from me

Anyone can contribute to an open source project. It is some effort, but you can push changes you make locally back to the project to improve it and make your improvements a part of the project.

mbsplugins.de/archive/2024-04-…

#curl


Welcome daniel-j-h as #curl commit author 1261: github.com/curl/curl/pull/1325…
#curl


I think it is worth for #hyper and the #rust ecosystem to work as #curl backend but not other way around. The only reason for curl to support hyper is to validate that the backend api is flexible enough and to have another "validator" for such interface. But probably it is one of those piece of code that maintainers are happy to push to third parties 😅


Today I want to mention how nice #opensource can be! Look at this #cURL issue github.com/curl/curl/issues/13… nice developers chatting on their own time about code and features with reproducible code and respect in mind! 😭 this is what I am here for!