/hll register does not perform steamid input validation #17
Assignees
Labels
bug
Something isn't working
Comments
|
Is there a compelling reason to allow ppl to register before their steamid64 has banked seeding time? |
|
Yes; theoretically, when users can grant VIP to each other (#19) having them pre-registered allows them to receive and check it via discord interface. In the grand scheme of things, having the discord<->steamid64 relationship for other uses is helpful IMO beyond just seeding re: future plans, so it was deliberate on my part, but in it's current rendition you're very correct that it serves no additional purpose. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Describe the bug
It is possible, as there is no input validation for the steam ID input, to break
/hll registerif an improper steam64id format is input. This input needs sanitization and checking.Additional context
Discussed in further detail here: #14 (comment)
The text was updated successfully, but these errors were encountered: