Serious Security issues

TK11235 / udonarium

WebRTCを使ってブラウザ間通信を行うオンセツール

MIT License

229 stars 74 forks source link

Serious Security issues #146

Closed zeteticl closed 3 years ago

zeteticl commented 3 years ago

in udonarium, SkyWay API key is public by console, the room password is not encryption and https://udonarium.app/ 's SkyWay setting is allow to localhost

So when i add console.log(peerContexts) in my localhost udonarium i would get this. i can get all room password.

TK11235 commented 3 years ago

v1.13.0のリリースで修正したためCloseします。報告ありがとうございました。