diff options
author | buckaroo-labs | 2023-12-21 12:10:20 -0800 |
---|---|---|
committer | GitHub | 2023-12-21 12:10:20 -0800 |
commit | a1257b8fdf0529d43232fb73b80181497c2166bc (patch) | |
tree | 2aea36310b5c7340301fd3a6bf8ee7f17b981f41 | |
parent | 029ecfb69289ba442029eb48d471bb6888bf3fd0 (diff) | |
download | scuttle-a1257b8fdf0529d43232fb73b80181497c2166bc.tar.gz scuttle-a1257b8fdf0529d43232fb73b80181497c2166bc.zip |
Update README.md
Yikes, This code does not look secure,
-rw-r--r-- | README.md | 7 |
1 files changed, 6 insertions, 1 deletions
@@ -3,7 +3,12 @@ SemanticScuttle is a social bookmarking tool experimenting with new features like structured (heirarchical) tags and collaborative descriptions of tags. Originally a fork of Scuttle, it has overtaken its ancestor in stability, features and usability. The querwurzel [fork](https://github.com/querwurzel/semantic-scuttle) brought the software up to PHP 7.3 compatibility, but is no longer in development. This fork's aims are to: * bring app compatibility up to PHP 8.2 (for at least the MySQL/mysqli database option, possibly others), avoiding the "Deprecated" messages under PHP 8.2 that will be the "Fatal Error"s of a future PHP version; * correct broken links in the documentation; and to - * bundle a responsive theme (forked from [sscuttlizr](https://github.com/jonrandoem/sscuttlizr)) with minimal features, designed for cases in which this app is embedded in a larger system. + * bundle a responsive theme (forked from [sscuttlizr](https://github.com/jonrandoem/sscuttlizr)) with minimal features, designed for cases in which this app is embedded in a larger system. + * secure the application (see warning). + +## Warning + +There is no warranty, explicit or implied, regarding the security of this application. No security testing has been performed, but a visual review reveals deeply concerning code practices. The associated risks may be mitigated by turning off anonymous editing and user registration capabilities after a single administrative user has been created, and/or not exposing the application to the internet. ## Features * LDAP/Active Directory authentication |