Episode 296 - Is Trojan Source a vulnerability?

<p><a href="https://twitter.com/joshbressers" rel= "nofollow">Josh</a> and <a href= "https://twitter.com/kurtseifried" rel= "nofollow">Kurt</a> talk about the new Trojan Source bug. We don't always agree on if this is a vulnerability (it's not), but by the end we come to an agreement that ASCII is out, Unicode is in. We don't live in a world where you can make a realistic suggestion to return to using only ASCII. There are a lot of weird moving parts with this one.</p> <h2>Show Notes</h2> <ul> <li><a href="https://trojansource.codes/" rel="nofollow">Trojan Source</a></li> <li><a href= "https://www.openwall.com/lists/oss-security/2021/11/02/5" rel= "nofollow">oss-security message</a></li> <li><a href= "https://github.com/nickboucher/trojan-source/blob/main/Python/early-return.py"> GitHub example</a></li> </ul>