Instance admins are pulling the code down and implementing it in their server. They could easily slip in some malicious backend code and there would be no way to verify it.
Of course, I said that too. And unless you self host yourself you have to trust the instance you’re using. But the question itself was more about lemmy in general, and most people just deploy the docker image or something.
Also, I don’t believe that, assuming an average person host an instance, the host will want some random people metadata from photos. It’s not big corps that process every bit of data they get.
Instance admins are pulling the code down and implementing it in their server. They could easily slip in some malicious backend code and there would be no way to verify it.
Of course, I said that too. And unless you self host yourself you have to trust the instance you’re using. But the question itself was more about lemmy in general, and most people just deploy the docker image or something.
Also, I don’t believe that, assuming an average person host an instance, the host will want some random people metadata from photos. It’s not big corps that process every bit of data they get.
Which is good to be aware of, but I don’t think they’d want your image exif data.