JustAnotherRando@lemmy.worldtoFediverse@lemmy.world•Just a reminder we are the future of social media.English
4·
4 months agoHey, I also was a Joey user. I am pretty tech savvy (I’m a software dev and a former sys admin). I’m not a Linux daily user though, so I still understand that out of place feeling. Like I have used Linux for things, but after working on my computer all day for work, I don’t exactly want to deal with roadblocks or tinkering on my computer in the evening.
I have also noticed that I spend less time scrolling on here than I did on Reddit, which is a good thing for me. It’s a place where I can satisfy that itch without getting lost in scrolling of posts or comment sections for hours.
Is the token not keyed to a specific source? I would have expected it to operate similarly to an SSL cert, where part of the verification process is that the source is the correct origin that the token belongs to - so if someone just lifted a valid cert to put into a malicious one, it would catch anything from changing a single character in the project name to changing the repository host (i.e. GitHub to GitLab)