Join Nostr
2025-11-23 17:35:50 UTC
in reply to

James Forshaw :donor: on Nostr: the most concerning part of admin protection's design was just that UI Access seemed ...

the most concerning part of admin protection's design was just that UI Access seemed to not considered part of the boundary. Of the 9 bugs I reported, 5 were basically ways of getting control over a UI Access process and from there full admin. I think if you're going to break app compat anyway you might as well have done something more than UAC with bells on it.
Author Public Key
npub1wp4gyc9xmkjxl0vpxpmv0hmsw25uyhvwnynewn5mrj8s66v8ku6sesejcr
Seen on
wss://relay.momostr.pink