-
Notifications
You must be signed in to change notification settings - Fork 397
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Private messages are included on local timeline #303
Comments
This comment was marked as spam.
This comment was marked as spam.
This comment was marked as spam.
This comment was marked as spam.
This comment was marked as spam.
This comment was marked as spam.
This comment was marked as spam.
This comment was marked as spam.
Has anyone clarified whether this is only visible logged in as yourself (laughably bad ux that could be panic inducing for users, but not actually a privacy leak) or publicly? |
This comment was marked as spam.
This comment was marked as spam.
This comment was marked as spam.
This comment was marked as spam.
This comment was marked as spam.
This comment was marked as spam.
This comment was marked as spam.
This comment was marked as spam.
This comment was marked as spam.
This comment was marked as spam.
Currently private messages are not supported, they might be displayed on public timelines. I temporarly locked this issue to avoid spam. |
Would I be correct in thinking that incoming private messages (and not just outgoing private messages) would be publicly available? |
This comment was marked as spam.
This comment was marked as spam.
Locking the issue permanently. As I said in #303 (comment). At the moment, private messages are not supported and we are well aware. Our team is looking into it. Thanks for the issue @koehn. Feel free to reach out to me directly on Discord for concerns / questions. |
A fix has been merged. Private messages sent from Wildeebest are not showing in public timelines anymore. Please sync your forks to patch your instance. Also note that, for safety, toots with private or unlisted visbility are now rejected until we implement them properly. In the future, issues that could be security related can be reported via https://github.com/cloudflare/wildebeest/blob/main/SECURITY.md. Closing this since the original issue has been addressed. |
https://example.com/explore
) and select “Local” from the list on the rightThe text was updated successfully, but these errors were encountered: