As you seem knowledgeable about the security hardening process, could you maybe try to help Piefe on that topic?

The development team is small and could probably use some help

Piefed is not vibe coded:

• https://piefed.social/c/piefed_dev/p/2020721/ai-policy-for-contributions-to-piefed#post_replies
• https://piefed.social/comment/10688199

Lemmy had a similar SSRF issue recently, the main difference is that it was disclosed using the proper process: https://github.com/LemmyNet/lemmy/security/advisories/GHSA-q537-8fr5-cw35

lemmy

the dev rimu banning people and people getting mad about it

Let’s be honest, Lemmy devs are also known to be banning a lot.

If you were not using the Piefed features (personal feeds, crossposts comments consolidation, flairs, instance blocking) then going back to Lemmy makes sense.

It doesn’t really matter in the end, all the communities are still available on all sides (with Mbin)

Makes sense, thank you!

You can look at https://codeberg.org/rimu/pyfedi/releases/tag/v1.6.25 to see the changes.

Basically, the 0-day was mostly someone running an LLM and trying to discover vulnerabilities without double checking them. Most of the things reported were not applicable (mentioning functions that don’t even exist), others were not applicable but led to some tangent hardening.

Lemmy also had a SSRF vulnerability a month ago: https://github.com/LemmyNet/lemmy/security/advisories/GHSA-q537-8fr5-cw35

Thank you!

Definitely

We’ve had disagreements in the past, but I can’t agree with you more in this case. It’s the entire point

😄

Also make sure to click on the first part of the link (before the /c/), for some reason clicking the second part will still try to fetch it on your instance rather than the one I linked

Maybe it’s blocked by Lemmy.ml ?

https://lemmy.dbzer0.com/c/jrpg@lemmy.zip

Should work: https://lemmy.zip/c/jrpg@lemmy.zip

Any promotion is good !

Great !

Great!

Good luck!

But why not use your main account? Creating an alt just for this question seems strange

https://piefed.social/community/fediverse/wiki/piefed-app

2 hours account, based on the other comments this seems to be borderline trolling

Nowadays I just recommend Piefed.zip.

If someone wants a regional instance they usually figure it out by themselves, also the Piefed instance chooser can help and has a latency indicator: https://piefed.social/post/1337079

For the nationale behind, here’s a list from a post on !fedibridge@lemmy.dbzer0.com that’s a few months old https://lemmy.zip/c/fedibridge@lemmy.dbzer0.com?dataType=Post&pageCursor=P2d1f586&sort=NewComments

• Lemmy.world is too big
• sh.itjust.works names contains “shit”, which can deter users
• lemmy.ca is Canadian-centric
• feddit.org, is German-centric, but technically English speaking too
• dbzer0 is focus centric
• programming.dev is topic-centric
• blahaj is queer-focused
• discuss.tchncs.de has a difficult name
• lemmy.sdf.org does not defederate anyone
• beehaw defederates LW and SJW
• infosec.pub is topic-centric
• aussie.zone is country-centric
• midwest.social is region-centric and admin can power trip at times (https://sopuli.xyz/post/20038037)