Unfortunately not. But if you can pass a message and tell them I emailed the press@ email alias with the details, that would be nice. I would be surprised if other people haven't noticed it yet. And I couldn't find any other email addresses to pass the info to.
In truthsocial.com/open-source , they exposed their private key in the zip file. It's under social-v1-public/config/secrets.yml . That file shouldn't be shared and truthsocial needs to regenerate a new set of keys
I gave up trying to keep this private because nothing's been done. Better to expose this publically and earlier before launch so that they notice and fix the problem.
Also, if anyone has any connections, tell them I e-mailed [email protected] with the subject "Security issue in truthsocial.com" about the problem.
Is there a way to DM on dot win? Dont want to doxx myself.
Unfortunately not. But if you can pass a message and tell them I emailed the press@ email alias with the details, that would be nice. I would be surprised if other people haven't noticed it yet. And I couldn't find any other email addresses to pass the info to.
In truthsocial.com/open-source , they exposed their private key in the zip file. It's under social-v1-public/config/secrets.yml . That file shouldn't be shared and truthsocial needs to regenerate a new set of keys
I gave up trying to keep this private because nothing's been done. Better to expose this publically and earlier before launch so that they notice and fix the problem.