Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

GitHub definitely needs to know about this due to their popularity and subsequent lowest-common-denominator status (which isn't a bad thing, just the truth); this sort of attack only requires a PhD in how to use the clipboard, and not any other particular knowledge or skillset.


GitHub indirectly uses the Java bundle for TextMate, where I filed this issue: https://github.com/textmate/java.tmbundle/issues/45

Since the escape sequences have to be handled everywhere, it seems unlikely that this will ever be fixed completely, but I hope that something will be done about it.


This issue has also been raised on the Eclipse bug tracker: https://bugs.eclipse.org/bugs/show_bug.cgi?id=3533

In 2001.


That is insane.

I added a pingback to this thread to the bug, along with some general encouragement that fixing this is a wise idea.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: