Just merged our first third-party pull request for Should I Pipe It? thanks to @rugk who verified the Rust installation script:

Thanks ;)

@aral I don't want to ruin the fun, but the page is pointless when it comes to actually piping a script.

Because you can detect on the server-side if it's piped through bash or not. (A simple solution for this problem is `bash -c "$(curl <script location>)" ` but it still has its own set of problems.

@sheogorath Well, it’s not pointless but it doesn’t protect against time of check / time of use attacks.

To that end, I plan to have a simple commandline app that does. First step:

Sign in to participate in the conversation
Aral’s Mastodon

The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!