Demi Marie Obenour
Demi Marie Obenour
> I don't understand this issue could you elaborate please? PyPy uses a different internal representation of Python objects than CPython does. For this and other reasons, its implementation of...
> That's a good point, but it is a little tricky to implement. Since `quinn` doesn't expose any API for obtaining a stable and peers-equivalent parameter, it is difficult to...
I consider this to be a problem with the protocol swaylock is using. That protocol should ensure that if swaylock crashes, the screen _stays_ locked, and swaylock is automatically restarted.
My proposal (#1888) solved the escape analysis problem using the borrow checker. Specifically, it desugared ```rust fn x() { let a = Box::new(()); let b = Box::new(()); become y(a) }...
You’re welcome @nienn! The original report is .
What is the correct behavior here? Unlike with PCDATA, there is no way to escape `-` in a comment. Is it best to return an error here? Or to use...
DTDs are also a notorious source of security exploits, so parsing them should probably be controlled by both a Cargo flag and a runtime check, both of which are disabled...
@Thiez Parsing _of the DTD_ is not dangerous, but using the DTD in any form exposes one to vulnerabilities, since resolving entities the DTD defines can require exponential time and/or...
@Thiez Also [XML External Entity (XXE) Processing][1]. [1]: https://www.owasp.org/index.php/XML_External_Entity_(XXE)_Processing
There are two parts that are dangerous: - External entities. I know of literally no use whatsoever for them other than security exploits. - Large entities. This can be used...