Btw seems like the dev is fixing, some of the other exploits is getting patched. But still doesn't give much confidence when they don't acknowledge it.

This post has been edited by Darkripper: Oct 18 2021, 02:40 PM

not denying the app is critical, just correcting the fact that ppl thought the apps cost 70mil to develop and discounting the effort of the developers
but the truth is the developer was doing this for free (initially) and I think only officially get paid around end of last year/early this year

Good to do it for free, the issue is on Govt for not ensuring quality in such a critical application. Devs are probably getting squeezed also la.

Pls lah nobody do things for FREE

Govt probably has no idea what or how to manage. When app first released, looked like uni project. Now probably still no QA or code review, Dev just fix when people complain.

client side to trigger? it don't work that way. the service i work on sents millions of sms daily. we are the one triggering to an end point expose by the provider. mysejahtera would have the list of contact on their end. all they need to do is periodically send the sms via to end point expose by the few operator we have.

if it's really trigger by us who has mysejahtera that's stupid

and i can bet with you that the gomen will not give a single fuck about this, just diam diam only, look at what happen to the recent LHDN data breach?

Mysengsara

you're talking about their backend implementation, which is out-of-reach. Client trigger mysejahtera, which in turn they forward it to provider. It doesn't matter how the backend is implemented if they open their doors wide open.

Time to retire this app as More abuse being seen especially for enforcement.
Business operator don't even recognize kad vaksin and writing on the book

since when malaysian care about security? leakers everywhere.

Well this is technically not security, more like unintended use of service.

Simplest solution to this is to only allow one OTP to be sent in x amount of minutes to a single number.

Spamming KJ phone number will ruckle some feathers

like this?

What's wrong with jQuery? Hmmm...

If you want, go bombard those politicians phone number

See if this really works

PM me their number lor. Its a curl command, you can try it for yourself. Its pretty much copy paste run.

Its time had passed.

How bad is it? I dunno frontend, so no idea

I mean, there are other frameworks like React, Vue and Angular, but those are not UI only right?

jquery is top go-to library when everyone is manually manipulating HTML elements for frontend, it is easier to use than vanilla JS. It is not bad, just it is not that relevant anymore.

Then SPA like Angular, React comes along, which is easier to code, a little bit more structured and efficient. The best thing about SPA is there is less page refresh, providing a better UX.

Now you even have Vue, Svelte, SolidJS which is trying to overtake React.

Its not just for UI, but for client-side aka frontend to render and do whatever it needs to (communicate with server, service worker to run some shit in the background)

This post has been edited by Darkripper: Oct 19 2021, 02:52 AM

pay peanuts get [______]