palindromi@feddit.de 2 years ago
Why should I want a wallet inside the code of a secure messanger?
Keep it simple and save. One tool for one job.
We have seen what some imported/used libraries may open holes in the software. (Hint: Log4j)
palindromi@feddit.de 2 years ago
Why should I want a wallet inside the code of a secure messanger?
Keep it simple and save. One tool for one job.
We have seen what some imported/used libraries may open holes in the software. (Hint: Log4j)
Seb3thehacker@lemmy.ml 2 years ago
From the lead developer: Code that doesn't get executed cannot be exploited. It's true that, when exploiting a vulnerability (in reachable code), you can take advantage of everything loaded into the program memory to take control of the execution, including unreachable code. But you're assuming there's a prior critical vulnerability in Molly that allows to alter execution flow in the first place