@carl I see the QtNetworkAuth improvements very useful for Tokodon, to replace the custom OAuth2 implementation.

@thisismissem@hachyderm.io ah understood. I didn't quite get how the fund worked, but it makes more sense now (and is much simpler—organizationally—for Nivenly!) I don't think we'll add exclusions for security fund recipients I would say, though, that one of the requirements has to be that the affected software accepts the vulnerability. Plenty of self-proclaimed "security researchers" have filed reports, and some go as far as to publish CVEs (against our own software!) without our permission. Quite the opposite of responsible disclosure.

@Sunil-Kolluru nodebb-plugin-sso-oauth2-multiple

There was a leak a few days ago suggesting July 31, which has since been retracted by the source (SkyShowtime in Europe).

@trwnh@mastodon.social sure, makes sense. That to/cc already exist in the wild as arrays means one less thing to worry about with multiple cross posts.

@trwnh@mastodon.social yes, it is in regards to audience no longer being sent out by Lemmy. While it's defined in 1b12 it seems to be ancillary now, so updating that property would mean Lemmy would need to add support for it back.. not the end of the world.

@reiver@mastodon.social apologies if this is inappropriate to ask, but has there been any thought given to speaker fees? I'm enthusiastic about ActivityPub and love to speak about it, but I'm not in an secure enough place financially to fly myself to Vancouver without some sort of arrangement in place.

@bz Bleibt halt #Automafia

@obenland@mastodon.social wonderful, good work!

@mario@hub.somaton.com that's wonderful to hear! Thank you so much.

Thank you @deadsuperhero@social.wedistribute.org and @jenniferplusplus@hachyderm.io, I was a little caught off guard by the whole thing. Happened so fast, and now FediForum is cancelled. Hmm.

@raphael@mastodon.communick.com great!

@sardegna Hmm, ein sehr guter Einwand. Da habe ich den Satz gar nicht zu Ende gedacht.

@young_ullrich #restic - Backup-Tool#forgejo - Software Tool (wie gitlab, github)#minio - S3 Datenspeicher#proxmox - Virtualisierung#Vaultwarden - Passwort Safe#Debian 12 - damit die ganzen Server & VMs auch ordentlich laufenUnd noch ganz viele andere #OSS Tools....

@mario@hub.somaton.com thanks, I tested that payload and it successfully edited the post, so at least from the payload point of view there is no issue. Perhaps there is a problem with the http signature on update? Is that handled differently than a create?

@mariusor@metalhead.club I realized after I replied that I think @reiver@mastodon.social was talking about C2S? Definitely on S2S that's a no-go. There aren't enough guarantees.