Re: Security lessons from liblzma
Tom Lane <tgl@sss.pgh.pa.us>
From: Tom Lane <tgl@sss.pgh.pa.us>
To: Daniel Gustafsson <daniel@yesql.se>
Cc: Andres Freund <andres@anarazel.de>, Bruce Momjian <bruce@momjian.us>,
PostgreSQL Hackers <pgsql-hackers@postgresql.org>
Date: 2024-03-29T23:20:33Z
Lists: pgsql-hackers
Commits
Same data as JSON:
GET /api/v1/messages/:b64id/commits
the thread's linked commits as JSON, with link sources.
API reference →
-
Introduce a non-recursive JSON parser
- 3311ea86edc7 17.0 cited
Daniel Gustafsson <daniel@yesql.se> writes: > One take-away for me is how important it is to ship recipes for regenerating > any testdata which is included in generated/compiled/binary format. IMO that's a hard, no-exceptions requirement just for maintainability's sake, never mind security risks. regards, tom lane