89 days into the year, the #curl project has received 72 security reports on Hackerone and ten additional ones over other channels. Close to one a day on average.

Compared to 2024, this is roughly 4x the volume.

The "obviously AI slop" rate has drastically gone down but the rate of actual vulnerabilities among these is below 10%.

We continue to spend a significant amount of time and effort on security.

u wot m8?

> Most modern operating systems include cURL by default. On Windows, use 'cmd' since in powershell curl is added as alias for Invoke-WebRequest (Microsoft.PowerShell.Utility)

techcommunity.microsoft.com/bl…

Let me get this straight: Microslop decided that it makes total sense to have a "curl" command that in PowerShell is a different thing than the standard "curl" available in `cmd`?..

Ffs. I have no words.

#Windows #SysAdmin #curl