GHSA-588f-fvcv-xhvf: Note Mark: Unauthenticated disclosure of soft-deleted note metadata via deleted=true on public books
An unauthenticated endpoint in the Note Mark backend allows disclosure of metadata for soft-deleted notes on public books. By using the deleted=true query parameter, an attacker can bypass the…
Read the full articleYou might also wanna read
Ghost Note: VS Code Extension for Private Code Documentation Without Source Modification
Ghost Note is a VS Code extension that lets you attach comments directly to the symbols in your codebase — without modifying the source code
17 Years of Smart Note-Taking: Connected Links, Markdown, and Learning in Public
Seventeen years of note-taking distilled: use connected links instead of folders, keep your notes in plain text Markdown, and publish your s
Burner Note: Free Open-Source Service for Encrypted Self-Destructing Messages
Burner Note is a free, ad-free and open sourced service for sending secure text based notes that are completely erased from existence once t

Granola AI Note-Taking App Has Default Privacy Issues: Notes Viewable by Anyone with Link
Granola, the AI-powered note-taking app, makes your notes viewable by anyone with a link by default. It also turns on AI training for anyone
note.md: A Local-First Markdown Workspace for Academic Research and Writing on macOS
note.md is a private, local-first markdown based workspace for macOS built for focused writing, research, and structured thought.
Notepad++ trademark infringement resolved; unauthorized references removed
2026-05-05

Comments
Sign in to join the conversation.
No comments yet. Be the first.