Hi guys!

Postiz is an open-source social media scheduling tool. After much digging, I finally got Lemmy to work with Postiz.

And, of course, it’s available in the open source! Let me know if it works for you!

And if you have suggestions for more Fediverses, I am happy to hear :)

  • corsicanguppy@lemmy.ca
    link
    fedilink
    English
    arrow-up
    9
    arrow-down
    2
    ·
    edit-2
    9 months ago

    Iso27002 fail.

    • docker kills validation, so we can’t assure consistency as we’re essentially dividing by plaid.
    • npm can’t be run in prod due to inconsistency of upstream, and dev tools which are verboten in stage/prod.
    • jagged_circle@feddit.nl
      link
      fedilink
      English
      arrow-up
      9
      ·
      10 months ago

      Wait till you see how Lemmy and piefeed are installed. Its a security nightmare here on the fediverse.

      • kat@orbi.camp
        link
        fedilink
        English
        arrow-up
        1
        ·
        edit-2
        9 months ago

        What do you mean? Also, since when is npm bad to use in production?

        • jagged_circle@feddit.nl
          link
          fedilink
          English
          arrow-up
          1
          ·
          edit-2
          9 months ago

          Lol since forever? It doesn’t verify the authenticity of anything it downloads, so its vulnerable to supply chain attacks.

          Pip and crates has the same problem.

          Maven is the only programing language package manager I know of that does. Otherwise, OS package managers like apt are secure, od course.

          • kat@orbi.camp
            link
            fedilink
            English
            arrow-up
            1
            ·
            edit-2
            9 months ago

            Sure but plenty of processes to make it workable exist. Companies like Microsoft, Netflix and parts of Google rely on NPM (firsthand experience at all these).

            So it sounds kind of insane to say nom can’t be used in production.