Darion Spaargaren Steveplays28

ZipInputStream-related security bugs in Minecraft mods

Advisory issued on January 11th, 2024 (UTC) by apple502j.

Several Minecraft mods were found to have path traversal security bugs related to improper ZipInputStream usage. These bugs allow for writing files and installing mods unexpectedly. Note that while the underlying issues are the same, the method of exploitation significantly differs across mods.

Affected Mods

The following mods are affected. Note that this information will be updated as the authors patch the issue.

ServerRPExposer: 1.0.0-1.0.2. Update to 1.0.3.
ARRP: 0.5.4-the first version named 0.8.1. Update to the second version named 0.8.1.

Create an env in your GitHub settings. Call it gradle.
Add a variable to the env named RELEASE_TYPE, and give it a value of alpha, beta, or release.
Add a secret to the env named MODRINTH_TOKEN, and give it the value of your Modrinth Token.
Paste publishing.yml in .github/workflows/publishing.yml
Add the following to your build.gradle.kts:

plugins {
  `maven-publish`

A guide on setting up LuckPerms prefixes on a Minecraft Fabric server

This tutorial assumes you have a fabricmc server with fabric-api installed.
Coming over from bukkit, spigot or paper? Make sure to replace all legacy formatting (those done with &) with tags from Simplified Text Format!

Installing the mods

Download Styled Chat, Styled Player List Then get LuckPerms https://luckperms.net/download

And get Fabric PlaceHolderAPI from the bottom of that same page

Custom data pack structures with jigsaws in 1.18.2

(Last updated: 1.18.2)

This is technically a shameless rip/edit of misode's guide that shows the traditional use of newly implemented custom structure system. I myself want to tackle the jigsaw aspect a bit, hence i'm making my own guice based on his. I will show how to create a data pack that adds custom structures to the world that also utilize jigsaw blocks. So treat this as a basic jigsaw guide in world generation. There is also a data pack download of this first example.

Always leave the world and rejoin to apply the new changes! Because traditional /reload or /datapack disable & enable do not refresh changes in worldgen files!

EXAMPLE 1 - Creating a structure that uses jigsaws

Let's make a simple house with a basement and a road that will lead away from the h

A curated list of command-line utilities written in Rust

Note: I have moved this list to a proper repository. I'll leave this gist up, but it won't be updated. To submit an idea, open a PR on the repo.

Note that I have not tried all of these personally, and cannot and do not vouch for all of the tools listed here. In most cases, the descriptions here are copied directly from their code repos. Some may have been abandoned. Investigate before installing/using.

The ones I use regularly include: bat, dust, fd, fend, hyperfine, miniserve, ripgrep, just, cargo-audit and cargo-wipe.

atuin: "Magical shell history"
bandwhich: Terminal bandwidth utilization tool

CarbonGhost's OptiFine alternatives

This is my personal list of OptiFine replacements. Although other lists exist, this list aims to be an simple feature replacement list that aims not to overwhelm you.

This list was written with 1.18 and 1.17 in mind, but many mods should still be available for 1.16 and 1.15. The critiques of OptiFine aren't relevant to a specific version of the game.

CarbonGhost's OptiFine alternatives

	const positions = [];
	const distanceLineMarker = new BlueMap.LineMarker("distanceLineMarker");
	distanceLineMarker.line.depthTest = false;
	distanceLineMarker.line.linewidth = 2;
	bluemap.popupMarkerSet.add(distanceLineMarker);

	hijack(bluemap.popupMarker, 'open', function (original) {
	return function () {
	const pos = bluemap.popupMarker.position;
	positions.push([pos.x, pos.y, pos.z]);

	[gd_resource type="Theme" load_steps=12 format=3 uid="uid://7bvxnk5n5imx"]

	[sub_resource type="StyleBoxFlat" id="StyleBoxFlat_6h42l"]
	content_margin_left = 10.5
	content_margin_top = 8.75
	content_margin_right = 10.5
	content_margin_bottom = 8.75
	bg_color = Color(0.117647, 0.117647, 0.117647, 1)
	draw_center = false
	border_color = Color(1, 1, 1, 0.137255)

	/* List generated by running `sudo dnf rq --disablerepo=\* --enablerepo=fedora --enablerepo=updates --qf "%{name}: %{license}" \| grep CC0 > cc0-packagelist-fedora.txt` */

	3dprinter-udev-rules: CC0
	R-gapminder: CC0
	R-nycflights13: CC0
	R-repurrrsive: CC0
	R-zip: CC0
	accel-config-libs: LGPLv2+ and MIT and CC0
	accel-config: GPLv2 and LGPLv2+ and MIT and CC0
	alacritty: ASL 2.0 and BSD and CC0 and ISC and MIT and zlib

	## For a beginner-friendly version of the following (more advanced users likely will get better use of the below,
	## if you're just starting out...), see this new gist:
	## https://gist.github.com/WolfgangSenff/0a9c1d800db42a9a9441b2d0288ed0fd


	This document represents the beginning of an upgrade or migration document for GDScript 2.0 and Godot 4.0. I'm focusing on 2D
	at the moment as I'm upgrading a 2D game, but will hopefully have more to add for 3D afterward.

	## If you want more content like this, please help fund my cat's medical bills at https://ko-fi.com/kyleszklenski - thank you very much! On to the migration guide.