logoalt Hacker News

bestoufftoday at 5:53 AM1 replyview on HN

If it used one of the standard arguments-handling crates (e.g. "clap") there's no way it can happen.


Replies

pferdetoday at 8:50 AM

If it used one of the standard system APIs for looking up user accounts (e.g. getpwnam(3)), there's no way it can happen.

This is incredibly bad engineering, on level of a SQL injection, in 21st century. Something a highschool student experimenting with scripting could come up with, but not a supposedly professional software company.

show 1 reply