zlacker

[parent] [thread] 4 comments
1. bakugo+(OP)[view] [source] 2025-07-28 16:59:37
If you're looking for security and stability, I would personally avoid this.

I took a glance at the code and it's... not great. It's absolutely full of short, meaningless 1-2 letter variable and function names that make it very hard to read and understand if you're not the original author. Wouldn't be surprised if it's full of security holes that will never be found.

replies(3): >>snerbl+xr >>tripdo+4F >>jshpre+jJ
2. snerbl+xr[view] [source] 2025-07-28 19:24:51
>>bakugo+(OP)
According to the author it was mostly written on the train with his phone, that could explain the terse naming.
replies(1): >>physic+ZI
3. tripdo+4F[view] [source] 2025-07-28 20:39:51
>>bakugo+(OP)
FWIW, it just had an XSS vulnerability fixed yesterday: https://github.com/9001/copyparty/security/advisories/GHSA-9...
◧◩
4. physic+ZI[view] [source] [discussion] 2025-07-28 20:58:17
>>snerbl+xr
This is a developer flex if I ever heard one
5. jshpre+jJ[view] [source] 2025-07-28 20:59:55
>>bakugo+(OP)
From the README FAQ section:

> i want to learn python and/or programming and am considering looking at the copyparty source code in that occasion

> do not

[go to top]