Simon Willison’s Weblog

12th October 2017 - Link Blog

Exploding Git Repositories. Kate Murphy describes how git is vulnerable to a similar attack to the XML “billion laughs” recursive entity expansion attack—you can create a tiny git repository that acts as a “git bomb”, expanding 12 root objects to over a billion files using recursive blob references.

Posted 12th October 2017 at 7:43 pm

Recent articles

Tracking the history of the now-deceased OpenAI Microsoft AGI clause - 27th April 2026
DeepSeek V4 - almost on the frontier, a fraction of the price - 24th April 2026
Extract PDF text in your browser with LiteParse for the web - 23rd April 2026

This is a link post by Simon Willison, posted on 12th October 2017.

git 52 security 598

Monthly briefing

Sponsor me for $10/month and get a curated email digest of the month's most important LLM developments.

Pay me to send you less!

Sponsor & subscribe