Andrew Todd

icon indicating a website link https://auspicacious.org/ icon indicating an email [email protected]

icon location Tokyo, Japan icon location Prefer the use of free, open-source tools over GitHub. @atodd-circleci is my old work account from my time at CircleCI.

Results 6 comments of Andrew Todd

Add integer to the list of types supported by the schema object.

@handrews I let the scope creep up a bit, but I feel like this way of writing it is probably clearer. I have another question, which you can push over...

`cargo login` encourages disclosure of secret token

> Also, in case you aren't aware, the token is stored in plain text. Yes, that is clear from the documentation, but there is still a significant difference between a...

`cargo login` encourages disclosure of secret token

> The other alternative is having asymmetric token being used by default, and phase out plain text token. Wow, yes, having asymmetric tokens will solve many of the problems of...

`cargo login` encourages disclosure of secret token

@epage Thanks, it looks like the Book authors will take up the edit. > At this point, it sounds like this issue is only about `cargo login -h`. Is that...

`cargo login` encourages disclosure of secret token

> If this is a vulnerability, it should not be discussed here but reported through the standard reporting process. They can make an appropriate determination. See https://www.rust-lang.org/policies/security Fair enough. I...

`cargo login` encourages disclosure of secret token

From the Rust Security Response WG. I've highlighted a suggestion they made that I don't think has been mentioned elsewhere: > While we agree that the current implementation and design...