Maybe make a cve out of it since it is an obvious exploit path running unchecked... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		consp on July 8, 2024 \| parent \| context \| favorite \| on: Zed Editor automatically downloads binaries and NP... Maybe make a cve out of it since it is an obvious exploit path running unchecked automatically downloaded binaries without user interference.

bilekas on July 8, 2024 [–]

I don't know if this is sarcastic but doesn't a CVE require an actual proof of attack and not just hypothetical?

consp on July 8, 2024 | [–]

It was sarcastic but on point, and many cves do not have poc exploits so at best it is murky.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact