Pre-release | overstimulate

Greasemonkeyed.com, a user script repository built on rails is up. This was the result of 2 nights work and then a few days tweaking. We know there is more to improve and will be working on it.

It is amazing that we could get from idea to deploy within a matter of hours. Thanks to Rails and all the great javascript work.

So try it out, and if you find any bugs, write a greasemonkey script to fix them ;)

Responses to "Pre-release"

Wed, 20 Jul 2005 paolo says:
http://simon.incutio.com/archive/2005/07/20/vulnerability Hi jesse. Have you see this? <i>Understanding the Greasemonkey vulnerability If you have any version of Greasemonkey installed prior to 0.3.5, which was released a few hours ago, or if you are running any of the 0.4 alphas, you need to go and upgrade right now. All versions of Greasemonkey aside from 0.3.5 contain a nasty security hole, which could enable malicious web sites to read any file from your hard drive without you knowing. # Unfortunately, 0.3.5 disables all of the GM_ API functions, without which many of the more interesting user scripts out there simple won't work. This is a temporary measure - the GM_ functions should return in a later release, once the security problem with them has been resolved. # I'm going to explain how the vulnerability works, because it illustrates a number of interesting concepts in both web application security and JavaScript.</i>
Thu, 21 Jul 2005 Jesse says:
Yes, there is already a possible fix. We hope it will be released soon!
Tue, 18 Mar 2008 yaba says:
Vulnerabilities are endless. There have always been vulnerabilities and there always will. Greasemoneky is not the first one to be vulnerable. I have used vulnerability scanners like Goolag and like this one, http://www.beyondsecurity.com/vulnerability-scanner.html and this is endless. Every week there are dozens of new security holes found. I wonder when there will be a good solution for that.