[opam-devel] [ocaml-infra] expiration SSL certificate

Daniel Bünzli daniel.buenzli at erratique.ch
Tue Sep 13 12:02:40 BST 2016


On Tuesday 13 September 2016 at 12:45, Daniel Bünzli wrote:
> On Tuesday 13 September 2016 at 12:34, David Sheets wrote:
> > Could you please elaborate on the design problem?
>  
>  
>  
> http://mjambon.com/yojson.html
>  
> "Note that yojson never checks the encoding of strings."
But maybe if you call your module Safe, it is; Yosjon.Safe.of_string. After all insecurity is only a feeling. It's hilarious.  

Frankly simply don't use the wrong tools; I don't claim there are no bugs in jsonm but at least it doesn't try to be insecure by design. I think that if you are implementing security infrastructure you should be careful about these details; as far as I'm concerned not doing so casts some doubts on your ability to actually implement these things.

Daniel




More information about the opam-devel mailing list