m3u8 file appears [bug]

Submitted ⁨⁨3⁩ ⁨months⁩ ago⁩ by ⁨Toes@ani.social⁩ to ⁨meta@ani.social⁩

Hello,

When I visit this post ani.social/post/2611163 my browser downloads a random file called “master.m3u8”

I’m running firefox 115.8.0esr with the darkly-red theme for lemmy.

With this option enabled “Auto expand media”.

The offending line appears to be the following: <iframe class=“post-metadata-iframe” allowfullscreen=“true” src=“https://prod.vodvideo.cbsnews.com/cbsnews/vr/hls/2024/03/11/2317151299662/2750480_hls/master.m3u8” title=“House Democrats try to force floor vote on foreign aid for Ukraine, Israel, Taiwan”></iframe>

From a security perspective, using a iframe to anything posted seems dubious?

source

Comments

Sort:hotnew top

Toes@ani.social ⁨3⁩ ⁨weeks⁩ ago
@hitagi@ani.social It’s happening again, code regression? :(

ani.social/post/4103643?scrollToComments=true

source
- hitagi@ani.social ⁨3⁩ ⁨weeks⁩ ago
  Thanks for letting me know. I’ll have a look again today. I made changes when we migrated so that might be the cause.
  
  source
hitagi@ani.social ⁨3⁩ ⁨months⁩ ago
That’s strange. It happens to me on Chromium too. Other instances don’t seem to be affected by this. I’ll look into it over the weekend. Thanks for letting us know.

source
zabadoh@ani.social ⁨3⁩ ⁨months⁩ ago
Hi, I’m the OP for that post.

I tried to change the link to a non-amp link to see if that would help, but Lemmy isn’t letting me save it.

Let me try turning off auto-expand to see if it lets me update.

source