Oddbean new post about | logout
elsat | 22 days ago (raw) | root | parent | reply | flag 
 @Silberengel there’s valid criticism of any app. Primal is no exception. 

What is the point of kicking Primal for using a FOSS dependency, and fixing an exploit quickly?
Silberengel | 22 days ago (raw) | root | parent | reply | flag 
 Why did the devs from other apps have to figure this out and report it to us? Where are their devs? Where are they ever?

Where did they dig up this library? Why were they using it?

Why have they left that repo to rot for 6 months?

Also, they've been like this, from the beginning. I'm incredibly underwhelmed by the entire project. I've always encouraged people to switch to a different kind 01 client, as soon as possible, and I bet that those that switch early, are more likely to stick around.
elsat | 22 days ago (raw) | root | parent | reply | flag 
 @Silberengel one of nostr’s strengths is folk outside the app devs figuring out bugs, and sharing this one with the app devs one way or another. 

I don’t think I’ll change your view on Primal. 

Fixing a bug reported from outside the team quickly is a good thing.
Silberengel | 22 days ago (raw) | root | parent | reply | flag 
 Yes, but I expect them to then be upfront about what happened and _immediately_ investigate it themselves, and openly self-report with their biggest npub.
They should be aggressively transparent.

Yeah, don't bother trying to change my mind on Primal. Waste of your time.
Lucas M | 22 days ago (raw) | root | parent | reply | flag 
 nostr:nevent1qqs2h2ry87lt73kypkppjxh73xke6e73xqay4sqzzx0ak7lfxuv028cpz4mhxue69uhhyetvv9ujuerpd46hxtnfduhsygr46ys5rgu3n9xyqcjsru24ct35usdgc08ehmu7f47jnqjngkx3ugpsgqqqqqqsaqjqhe