Why Nostr? What is Njump?
2024-03-24 19:39:34

Rich Felker on Nostr: Heads-up FOSS maintainers! There is a person sending bulk patches/PRs to FOSS ...

Heads-up FOSS maintainers!

There is a person sending bulk patches/PRs to FOSS projects for supposed issues "Found by RASU JSC" (not sure if that's a static analysis tool itself, or some org).

The patches I've received are all very, VERY wrong formulatic changes, maybe even LLM-generated, doing things as stupid as replacing sprintf(s, fmt, ...) with snprintf(s, sizeof s, fmt, ...) where s has pointer type.

If you've accepted any such patches, review carefully & possibly revert!
Author Public Key
npub16rfflkvpnwedzj66fp0y9e80r32ehgcwxg8nk0j50pd29l79ja8s6qydu9