Sounds reasonable, but I donât think Iâll be developing this app much further. I started it just to learn Electron and it does what I want for my own purposes.
I remember mentioning this back when I was in the team, and we didnât act on it at the time, but seeing as the developer themselves doesnât seem interested in continuing this project, I would get rid of it.
Also, to demonstrate issues with using outdated software (even simple software like this), from the projectâs README:
If you are running a version of ExifCleaner before 3.6.0, upgrade immediately! A security vulnerability was found in exiftool, the command-line application that powers ExifCleaner under the hood, and this was updated in ExifCleaner 3.5.0. There was also an XSS and Electron remote shell vulnerability due to unsanitized HTML output that was fixed in ExifCleaner 3.6.0.
Whoâs to say that a similar vulnerability wonât crop up in the future as well? Using software with outdated libraries dependencies is risky, and not something we should be encouraging by recommending it.
Well, that wasnât exactly what I meant, I meanât that whenbrelatively small and simple software which gets used locally without updates for a year strikes me as less of an issue then lets say a browser.