There was an attempt to put ip logger links on the wiki
I removed the offending commits
You can still see it at https://github.com/coq/coq/wiki/Home/ed3fd6a6f231f7b1c960f105f909f432475bdb71 (the "Installation of Coq on Windows" link) until github garbage collects
I've reported the abuse to GitHub. We can also block the user if it happens again.
This is the second time that this happens (again by a new GitHub account). I've removed the offending commit like you did last time.
Maybe we can have a CI script which checks all external links vs an "allow list".
Seems too heavy to me. We already closely monitor changes to the wiki thanks to our GitHub notification feed here in Zulip and I've reported both incidents to GitHub support so hopefully they can put some additional spam filters in place.
I guess it would be harder for GitHub to come up with an "allow list". They probably would have to do it "deny list" based.
Yes, though in this case, it's spam that's pretty easy to detect: in both cases, it was users that just joined and didn't do any actual contribution, editing the wiki of a project with which they never interacted, to replace an existing link by a hidden link to a linkify.me short URL...
Before coming up with our own solutions, let's see if this really becomes a significant problem that GitHub itself cannot handle.
The same user has tried again inserting this link, so I've blocked them from the Coq organization and reverted their changes.
Last updated: Jun 09 2023 at 08:01 UTC