HackerTrans
TopNewTrendsCommentsPastAskShowJobs

simonmysun

no profile record

Submissions

Nous Research edits GitHub issue to remove plagiarism claims about Hermes Agent

github.com
8 points·by simonmysun·2개월 전·1 comments

Tell HN: Immersive-translate plugin may expose you to XSS attacks

3 points·by simonmysun·2년 전·5 comments

comments

simonmysun
·지난달·discuss
I read the article in the source code mode and thought it was intentional until I came back to the comments

P.S. your solution seems to have disabled the custom font instead of fixing it
simonmysun
·지난달·discuss
Hmm I cannot load the font on Firefox 151.0.3 Arch Linux. All I see is only a title and empty paragraphs. So I end up reading the article in the source code mode and felt pretty on-brand.

Back to HN comments it looks like this wasn't actually intentional?
simonmysun
·2개월 전·discuss
[flagged]
simonmysun
·10개월 전·discuss
Nice. Searching on Google I only got interactive maps requiring annoying registration.

A small tip: It's a bit complicated to hide a specific icon on the map. It would be better if users could uncheck them when exploring the map instead of having to find them on the left panel. Besides, an export / import functionality for what you stored in LocalStorage would also be helpful.

And there's some extra lessons from the Elden Ring map from Chinese communities: They allow users to contribute by leaving comments with coordinates. The comments are categorized into "tips", "lore", "roast", etc and can be liked or disliked, which can be filtered by the viewers. In the end it became a very useful map for all kind of players.
simonmysun
·2년 전·discuss
I might have indicated it's DOMPurify's problem. Sorry I didn't mean that.

The browser add-on is unfortunately not open source and I don't want to spend a lot of time to investigate it. According an earlier issue (#1437), they should have fixed it already. I guess the later envolvements changed that.

I agree with you that what DOMPurify does should be cared of by the Browser.
simonmysun
·2년 전·discuss
Yes. The issue is caused by the browser add-on. Before they get it fixed, I think it's better to notify HN users who use it.

They said in previous posts that they are using `DOMPurify` to sanitize the code, but it turns out that it did not work well.
simonmysun
·2년 전·discuss
Screenshots to prove: https://imgur.com/a/vaKVo52