latest 14 messages by ojacobson

+ [2015-11-26T18:55:03Z] ojacobson I have +refs/pull/*/head:+refs/pull/* in my fetch specs for github repos for this very reason (that's one of the undocumented ways to do it)
+ [2015-11-26T18:54:28Z] ojacobson There are some undocumented ways to do it, or you can manually add the original repo as a remote and fetch it
+ [2015-11-26T18:54:15Z] ojacobson I don't believe the UI has such a feature.
+ [2015-11-26T18:25:15Z] ojacobson man git-clean
+ [2015-11-26T18:10:56Z] ojacobson Different credentials healpers, different git versions, different netrc/credentials cache contents...
+ [2015-11-26T03:14:09Z] ojacobson Classy, too: they sent it to folks who created gists during the affected time.
+ [2015-11-26T03:13:56Z] ojacobson Neat, Github sent out a security notice about the Gist thing.
+ [2015-11-25T21:13:46Z] ojacobson Zarthus: the surprise is that secret gists were included in the non-logged-in list of your gists
+ [2015-11-25T20:51:02Z] ojacobson If you want a free bounty, ^
+ [2015-11-25T20:50:44Z] ojacobson we're apparently on a first-name basis with some Github folks
+ [2015-11-25T20:50:35Z] ojacobson Nah, I let $DAYJOB's security folks deal with it
+ [2015-11-25T20:41:16Z] ojacobson STR: 1. Create a secret gist. 2. Log out. 3. Look at your Gist list (https://gist.github.com/YOUR-USERNAME/) 4. surprise!
+ [2015-11-25T20:41:14Z] ojacobson PSA: "secret" gists on Github are broke as fuck right now