github-starred/keycastr
2
0
Fork 0
mirror of https://github.com/keycastr/keycastr.git synced 2026-05-15 14:15:50 -06:00
Code Issues 96 Projects Packages Wiki Activity Actions

[GH-ISSUE #120] Jeroboam warning for keycastr updater #98

New issue
Closed
opened 2026-05-05 04:55:00 -06:00 by gitea-mirror · 0 comments
gitea-mirror commented 2026-05-05 04:55:00 -06:00
Owner
Copy link

Originally created by @d7an on GitHub (Jul 24, 2018).
Original GitHub issue: https://github.com/keycastr/keycastr/issues/120

Potential problem with keycastr's updater?

See results from jeroboam

  • KeyCastr.app
    Version: 0.9.6
    Sparkle Version: '1.5 Beta 6'
    Feed URL: http://stephendeken.net/software/keycastr/appcast.xml
    ✓ ATS is active
    ✓ Doesn't allow arbitrary loads
    ✓ Doesn't have insecure ATS exceptions
    ✗ Uses an insecure Feed URL
    Risk classification: BROKEN UPDATER

https://sparkle-project.org/documentation/security/
https://vulnsec.com/2016/osx-apps-vulnerabilities/
https://github.com/mrackwitz/Jeroboam

Originally created by @d7an on GitHub (Jul 24, 2018). Original GitHub issue: https://github.com/keycastr/keycastr/issues/120 Potential problem with keycastr's updater? See results from jeroboam * KeyCastr.app Version: 0.9.6 Sparkle Version: '1.5 Beta 6' Feed URL: http://stephendeken.net/software/keycastr/appcast.xml ✓ ATS is active ✓ Doesn't allow arbitrary loads ✓ Doesn't have insecure ATS exceptions ✗ Uses an insecure Feed URL Risk classification: BROKEN UPDATER https://sparkle-project.org/documentation/security/ https://vulnsec.com/2016/osx-apps-vulnerabilities/ https://github.com/mrackwitz/Jeroboam
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
main
minimal-visualizer
mouse-support
v0.10.5
v0.10.4
v0.10.3
v0.10.2
v0.10.1
v0.10.0
v0.9.18
v0.9.17
v0.9.16
v0.9.15
v0.9.14
v0.9.13
v0.9.12
v0.9.11
v0.9.10
v0.9.9
v0.9.8
v0.9.7
v0.9.6
v0.9.5
v0.9.4
v0.9.3
v0.9.2
v0.9.1
v0.9.0
v0.8.5
v0.8.4
0.8.2
0.8.1-avh4
Labels
Clear labels   
bug

   
compatibility

   
discussion

   
documentation

   
enhancement

   
help wanted

   
help wanted

   
investigation needed

   
pull-request

Mirrored from GitHub Pull Request

  
release

   
visualizer
No labels
bug
compatibility
discussion
documentation
enhancement
help wanted
help wanted
investigation needed
pull-request
release
visualizer
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/keycastr#98
No description provided.
Delete branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?