Actually really wanna just infodump on someone abt my stories but too tired to talk in English so. Yep.
Roger - Skull Mask
There's an interesting contrast between Roger's pretty face and the horrendous mask he wears.
Waterfall Bug Bounty Programme
staffWhile I work on fixing the minor bugs that have been reported, my mind started to wander. While there's been no showstopping issues reported yet, there's almost certainly a few lurking in the code, waiting to be found. So I thought - why not run a bounty?
What's a bug bounty programme?
Wikipedia can do a better job of explaining, but in short, a bug bounty is an official programme where people who find serious bugs (in this case, security ones) can be rewarded.
Why is Waterfall running one?
There hasn't been one reported yet, but somewhere in the code, there's going to be a serious bug that could have serious consequences. Waterfall is a solo project that's basically for fun and, while I'm not terrible at security by myself, it also means there's nobody to really review my code and find anything glaringly obvious. This means that occasionally, something serious might sneak by, and having that in public with a "here's basically the instructions to ruin everyone's day" attached in the form of a normal bug report is a bad idea. This is where the programme comes in.
How does it work?
Here's the page going into more detail.
In short, if you find a serious bug with security implications, you email it to the address on that page, giving me as much info as you can. It's STRONGLY advised you use a sideblog or side account for this, but specific considerations are outlined on the page, including how to get dev environment access for anything that might be particularly destructive.
It should be noted this bounty is for serious bugs only, mainly affecting security or privacy. Other bugs should still be reported through the GitHub linked in the site footer.
So what are the rewards?
Trivial bugs already get badges rewarded, and the bounty programme is no exception - you'll get the standard ones plus a special VRP badge. In addition, for stuff that's impactful, there are cash rewards on a sliding scale of severity. It's worth noting here - while most companies offer a bit more than this in their BBPs, Waterfall is a solo project, so it's limited by what one guy could realistically afford. Better than nothing though, right?
You can take the cash yourself, or choose to donate it to charity.
With any luck, nothing major will ever be reported - but the chances of that are slim, and it'd be utterly hubristic to think there's no flaws in my code that could be dangerous, and people who help defend against that definitely deserve to be rewarded.
hasenfu:D the trick is to not tap, which tells the site to go to the link. but you can long press.
you can fast reblog in mobile browser like this:
long press reblog button
tap away the "open in new window/copy link//// etc" pop-up
type in fast reblog pop-up
hit reblog
:3
(from discord)
hooooooooo its working oh my god thank you
babushka
doesn't work in Opera Touch so far but i will keep trying
babushka
so i did a specific gentle tap and ot worked, somehow
babushka
it works like 1/100 times so i can't quite get a hang of it
@beefox re: dick
basically you are right, but if we talk about language context we are entering a wonderful word of "хрен тебе" и "ни хрена тебе" mean the same thing but "ни хрена себе" means a completely different thing and i am not sure i am able to dive into this right now
@80roxy08
10 days between finishing these? I'll fucking take it!
Have the first NilesXJasvin content of the year
Originally this was full body but I cropped it for my sanity cause I started going too hard. Original pose, and technically what the pose still is just not as obvious cause cropped, was Jasvin sitting between Niles's leggies and leaning back against him. only bit of leggy that remains is one of Niles's knees that now looks very out of place but like, too late now.
я: какие у нас сегодня местоимения?
гендер: хер.
я: может быть, her?
гендер: нет.
гендер: хер тебе, а не местоимения.
я:
гендер: ничего не знаю.
ok so turns out firealpaca has a brush for lineart that i really adore. clip studio paint i love you but you need better textured brushes
hasenfu:D the trick is to not tap, which tells the site to go to the link. but you can long press.
you can fast reblog in mobile browser like this:
long press reblog button
tap away the "open in new window/copy link//// etc" pop-up
type in fast reblog pop-up
hit reblog
:3
(from discord)
hooooooooo its working oh my god thank you
babushka
doesn't work in Opera Touch so far but i will keep trying
babushka
so i did a specific gentle tap and ot worked, somehow
Vincent
Fast redraw of my old art with Vincent. I found his hair not matching my expectations.
hasenfu:D the trick is to not tap, which tells the site to go to the link. but you can long press.
you can fast reblog in mobile browser like this:
long press reblog button
tap away the "open in new window/copy link//// etc" pop-up
type in fast reblog pop-up
hit reblog
:3
(from discord)
hooooooooo its working oh my god thank you
babushka
doesn't work in Opera Touch so far but i will keep trying
Obviously there's still a few bugs I need to work my way through and images need to be reconverted still, but
Generally speaking, how is the update? General feedback thread, go for it
babushka
confusing but promising! also the site got a LOT faster!!
I am. Wheezing because apparently when you draft a post on mobile and then edit it it becomes TINY... I know I should just report this on github but asdfghjkl.... Tiney post... Teeny tiny little draft aaaa
Finished another gift for my sister! Done in watercolor and gouache.
Just threw some colours on a drawing for a friend! Her OC Maria is.... so pretty.....
here's Rufus, my gay cowboy artificer! still settling on his design.....
My Dearest Sunny Gifted me her memento December 13th!! I’m overjoyed!!
I WILL be making a post abt Russia (and Belarus update) as soon as I am in shape for this because I don't want it to be half-assed, there should be sources and stuff