Resume field would get an api endpoint that only returns a json resume, and only if the request header is application/json. And the json resume would have embedded json.

And now the ENTIRE INSTANCE for lululemon, who’s bot posts 1000 times a minute.

If the only criteria to be in a private channel for admins is being an admin, there’s no use making it private. ;) Unless your just looking to filter out bad actors who don’t want to take 5 min and 5$ to make an instance.

FYI for anyone looking to deface more instances, That list is only updated every 24 hours. Depending on when it last run on your home instance, the info could be out of date.

You’re not misunderstanding. They just solve more than one issue, and create a few too.

That’s a personal preference though. You don’t have a need for a relay. There are more than a few people who want to run their own instance and at least browse all the things without having to subscribe to them. This is a news aggregator at the core after all.

I’ve been pondering trying to make one, but it’s not going to be a cake-walk. The tool (that was a script) I wrote ruffled some feathers for it’s potential to destroy the lemmyverse. While I don’t believe that could happen. I’m still interested in something easier and more integrated.

The theory is simple and I am willing to take a stab at it, but there might be road blocks trying to make or incorporate changes to the actual lemmy code.

That, is actually kind of fascinating and may be important info for someone doing a follow-up investigation. If that was the bad actor phishing for moderation access, why would they need that, when they already had an admin account? If it was legit, then it’s super sus. whoever this app developer was needs to have a little light shone on them.

TBF, at least you’re doing something.

You do you. I would tell my users I have no idea what’s going on, and definitely not say “using your open tabs is probably fine.”

I think this carrying on without providing more information is reckless. Does an actual admin from this instance really know what happened or are you just taking a bunch of random commentary and speculation as gospel then telling the users “we’re good.”

We’ve changed our name to Israel. - The Admins.

True that. If you look at posts on lemmy.world though, it’s clear their users (which is like 50% of Lemmy) have zero clue they’re defederated ATM, and probably many that don’t know it’s compromised.

lol

They are still acting on it, seems.

I didn’t want to say it, because I wanted to believe :(

That’s fair. I shouldn’t have said “replace reddit.”

mastodon.world seems okay, but whos to say where the silos are between that and lemmy.world.

TBF modern browsers are remarkably secure from being a vector to pwn your computer these days.

EDIT: I don’t endorse hanging out on a compromised lemmy.world. Focus on the implication for the bigger lemmyverse though. A hack coming through to you is unlikely.

All the bean memes are in danger! On a serious note, old-skool or not, it’s a huge loss of trust in something the community-at-large is excited to see replace reddit.