• DeadNinja@lemmy.world
    link
    fedilink
    arrow-up
    7
    ·
    4 months ago

    Not going back to Jerboa unless the basic feature of searching contents other than just communities is implemented. I find this fundamental feature sorely lacking in Jerboa while every other app around there have this.

    \

    https://github.com/LemmyNet/jerboa/issues/27

    \

    Kind of surprising, because this is pretty basic feature, and has been open for over two years.

  • taaz@biglemmowski.win
    link
    fedilink
    English
    arrow-up
    6
    ·
    edit-2
    4 months ago

    Getting “Posts failed loading, retry” button after scrolling to the end of Subscribed feed (does not matter if Scaled, New).
    Verified across multiple instances.
    E: And the button does nothing, specifically, after clicking it it vanishes and comes back (the loading bar does not appear). No problem in All.

    • Corngood@lemmy.ml
      link
      fedilink
      arrow-up
      7
      ·
      4 months ago

      Is there a reason you’re suspicious about that particular dependency, or are you just asking about dependencies in general?

      • GolfNovemberUniform@lemmy.ml
        link
        fedilink
        arrow-up
        2
        arrow-down
        2
        ·
        edit-2
        4 months ago

        I’m worried about that one specifically. Dependencies in general can be suspicious if they come from untrusted sources but in that case it’s suspicious by being related to testing (like the xz thing was) that shouldn’t even be in a released app anyways.

        • Dessalines@lemmy.mlOPM
          link
          fedilink
          arrow-up
          7
          ·
          4 months ago

          I have no idea what this means. Why is the android testing dependency is less secure than all the other android deps we’ve updated?

    • mannycalavera
      link
      fedilink
      arrow-up
      4
      ·
      4 months ago

      If you have a security concern you should raise this with Google using a minimal working example to demonstrate yourself.

      Do you have a genuine concern and can you provide a working example of the attack surface in a repository that you can share?

        • Dessalines@lemmy.mlOPM
          link
          fedilink
          arrow-up
          2
          ·
          edit-2
          4 months ago

          There were dozens of dependency upgrades in this release, I have no idea why you think this specific one has security issues. Either way we don’t have time to read through every line of code of every dep update, but here’s the source code: https://android.googlesource.com/platform/tools/base

          If you find something, you might want to submit a PR as it would affect not just ours, but a lot of android projects.