HackerTrans
TopNewTrendsCommentsPastAskShowJobs

joethei

no profile record

comments

joethei
·2 miesiące temu·discuss
The system consists of a few different parts, the linter is only one part and is responsible for surfacing issues to the dev during development.

We have additional checks that also check the release assets to catch issues in dependencies etc, that part is not public.
joethei
·2 miesiące temu·discuss
Ads / telemetry are disallowed completely, as per our developer policies. So plugins that have those domains in the code will not be available from the site / app.
joethei
·4 lata temu·discuss
We did not implement the crypto part ourselves. We use the SuptleCrypto Web API implementation and a library called scrypt (this one: https://github.com/ricmoo/scrypt-js).

We also had someone from the EteSync/EteBase project take a look at the code before Obsidian Sync was released.
joethei
·4 lata temu·discuss
No, we do not use AWS. The Sync and Publish servers are running in Digital Ocean datacenters in the US. How sync encrypts the data is documented here: https://help.obsidian.md/Obsidian+Sync/Security+and+privacy

As others have already pointed out, Sync is not the only option to synchronize notes, Obsidian sync is just a convenience option.

For compliance, I am guessing you mean certs like SOC 2 / ISO 27001?, or what are you referencing? As we are a tiny company (6 people, not all full time) we just can't expense the time needed to get such a certificate.