user by user id exploit fixed #320
Comments
|
For now, I would deprecate the functionality |
|
Oh no, this basically kills my newest project TwT |
|
What is your newest project? |
|
maybe user id neighbors? |
|
No, it's a user database kinda like scratchDB but only the part about users. It takes the current number of scratch users, then check each ids until that number, and add the user's datas to the DB. I already coded the whole thing but because of that it's not working :/ But you're right, I also thinked of a user id neighbors finder project while coding it, but I won't make it until this is fixed 😞 |
|
Oh no, that's sad. It was a useful exploit |
|
Perhaps we'll find a new one
Tim ***@***.***> schrieb am Do., 2. Jan. 2025, 12:49:
… Oh no, that's sad. It was a useful exploit
—
Reply to this email directly, view it on GitHub
<#320 (comment)>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/ATCKMZSFZAAJXQCLEKQ724D2IURUJAVCNFSM6AAAAABUOZYTLGVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDKNRXGY2TKNZSG4>
.
You are receiving this because you authored the thread.Message ID:
***@***.***>
|
|
one thing you can fetch with user id alone is the profile picture. that might be a little helpful if only there weren't a ton of people using the default one or maybe even better: https://uploads.scratch.mit.edu/users/avatars/58743127.png |
I asked Ceebee if a replacement as an official API feature was possible through YAB (Because yes, I'm part of the YAB, allowing me to chat to some ST members). She may or may not respond, but these kind of questions often get an answer. I hope this can help :) |
sortof liike https://everyuuid.com/ ?? |
What is YAB Edit: I looked it up |
FAReTek1
added
the
scratch api issue
Did she respond? |
You can no longer reply to people in comment threads that haven't commented in them. This means that you can no longer use the current method to lookup usernames by user id
The text was updated successfully, but these errors were encountered: