We tried this at GitHub on the Desktop team for a Hot Minute, this is why this existed - it quickly proved unworkable though which was a real drag because that integration between the website and Desktop app would've been really Great
-
-
-
I think it should "just work" these days, localhost should now be considered a secure origin and no tricks should be necessary to avoid any mixed content or similar restrictions.
- Još 3 druga odgovora
Novi razgovor -
-
-
Nope, looks like that was a real vulnerability. That one is expired and revoked - if they're still doing that with a new certificate, then it needs to be revoked too... haha, it never ends

- Još 3 druga odgovora
Novi razgovor -
-
Seriously
@SwiftOnSecurity I want to see your name on a CVE - request one :) - Kraj razgovora
Novi razgovor -
-
-
I tried to find that cert and whoopsie there's a very similarly looking domain name https://crt.sh/?id=2140336607 not revoked, wanna find that private key?
- Još 1 odgovor
Novi razgovor -
-
-
This timeline is lit. https://t.co/Z5o030wb3L https://twitter.com/taviso/status/1202052594115284992?s=21 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
-
-
Logo and flashy name now pls
@SwiftOnSecurityHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.
The certificate was issued by