Open in app

Sign up

Sign in

Write

Sign up

Sign in

Mastodon

Member-only story

Power of open source community

Park Sehun
3 min readAug 11, 2023

Talking about MOQ 4.20 version…

Let me start with the articles.

Popular open source project Moq criticized for quietly collecting data

Open source project Moq (pronounced "Mock") has drawn sharp criticism for quietly including a controversial dependency…

www.bleepingcomputer.com

“The popular open-source project Moq has faced criticism for including a controversial dependency called SponsorLink in its latest release. SponsorLink, shipped as closed source, collects hashes of user email addresses and sends them to SponsorLink’s CDN, raising privacy concerns.”

After 4.20.0 was released, these two issues had been raised.

There is a total of 800–900 messages though, there were certainly sharp points raised.

It was not only a privacy issue but also a trust issue, as well as the developer, did never expect this to be in OSS overnight.

The author made this story available to Medium members only.
If you’re new to Medium, create a new account to read this story on us.

Continue in app
Or, continue in mobile web

Already have an account? Sign in

Park Sehun
Park Sehun
Follow

Written by Park Sehun

148 Followers
24 Following

https://www.linkedin.com/in/park-sehun-1097b140

Follow

No responses yet

Write a response

What are your thoughts?

Help

Status

About

Careers

Press

Blog

Privacy

Terms

Text to speech

Teams