Hi, I just noticed ohloh.net has a crossdomain file (http://www.ohloh.net/crossdomain.xml) with no restrictions. By doing so you just enabled a big CSRF security hole, pretty much allowing any flash ... [More] app performing actions on your users' behalf. It is strongly adviced to create a separate domain for your api's (e.g.: api.ohloh.net) and not enabling any cookies there.. Hope this helps, Evert [Less]

well i'm glad the problem is a known one.. are there any timelines attached to this? I would like the project page to show the entire history, so I might change the enlistments to browse the entire structure instead

My project (http://www.ohloh.net/projects/3294) is missing all its history.. Ohloh reports 25 commits, started at around jan 1st 2008, while the first log is: r1 | evert | 2006-01-07 21:44:48 +0100 ... [More] (Sat, 07 Jan 2006) | 2 lines First injection This kinda sucks, as it seems like a really young project now :) [Less]

thanks!

Hi, When I setup the SabreAMF project on ohloh, I picked the root svn directory, while instead i should probably only have used the root .. Now the line counter is way off.. What is the recommended ... [More] way to fix this? Just delete the old enlistment and create a new one? Evert [Less]

If you are going this route, please try to not make ohloh yet another user silo.. open things up with foaf and openid.