Could be! But that doesn’t excuse a massive security failure like sending password reset emails to attacker-supplied addresses. I am pretty sure they have had other large failures.
They are writing code with zero/negative regard for security and that makes me want to use any alternative FOSS git host.
GitLab is a security nightmare, good luck to whoever purchases that.
Could you elaborate? I use Gitlab bit i’m not a security expert.
Here is the one where I decided to never trust their code: https://arstechnica.com/security/2024/05/0-click-gitlab-hijacking-flaw-under-active-exploit-with-thousands-still-unpatched/
As if that isn’t bad enough, I am pretty sure they have had other incidents.
Elon has entered the chat…how many labs of this git kind can you make for him within 3 months? Can git be somehow monetized?
I thought github is worse than gitlab in terms of security
Could be! But that doesn’t excuse a massive security failure like sending password reset emails to attacker-supplied addresses. I am pretty sure they have had other large failures.
They are writing code with zero/negative regard for security and that makes me want to use any alternative FOSS git host.
Gitea