Andrey Karpov on Twitter
twitter.com
external-link

ONLYOFFICE Community Server and “Security” :).PVS-Studio message: V3022 Expression ‘string.IsNullOrEmpty(“password”)’ is always false. SmtpSettings.cs 104 - https://t.co/QX2VFshbXO pic.twitter.com/XyVz7EJf6Q— Andrey Karpov (@Code_Analysis) November 24, 2020

This seems like the most asshole-y way of disclosing a vulnerability ^^

It’s bragging about something in the most unbearable way possible.
I wonder what would happen if someone used another static analyzer to find a bug in PVS studio code. Probably not a nice conversation.

Also, the onlyoffice reply seems a little bit sarcastic, even though it might not be.

I wonder what would happen if someone used another static analyzer to find a bug in PVS studio code. Probably not a nice conversation.

Not possible since PVS-studio is not Open Source.

Wouldn’t you know, you can’t check the code of the program that checks for bugs.
Ironic.

Bugs in code
!bugs

    The most interesting and funniest bugs, errors and dumb code committed by developers in different programming languages

    • 0 users online
    • 1 user / day
    • 1 user / week
    • 1 user / month
    • 5 users / 6 months
    • 60 subscribers
    • 14 Posts
    • 8 Comments
    • Modlog