Our two major screenwriting apps have updates out this week, fixing minor bugs and annoyances.
Highland 1.8.6 fixes an issue where scene headers could get stuck on bold for some users. Highland offers application-wide preferences for whether scene headers should be double-spaced and/or bolded. Most screenwriters set it once and forget it.
Weekend Read 1.5.1 fixes a range of minor formating bugs reported by our users.
Both are available in their respective App Stores.
We already have a new build of Weekend Read in review with Apple to address a vulnerablity in the open-source AFNetworking code library. Despite the alarmist headlines (“1,500 iPhone apps have a serious flaw that hackers can easily exploit”), it’s highly unlikely users would ever encounter an issue within Weekend Read.
From Ars Technica:
To exploit the bug, attackers on a coffee shop Wi-Fi network or in another position to monitor the connection of a vulnerable device need only present it with a fraudulent secure sockets layer certificate.
The hypothetical coffee shop attacker could get access to network activity to and from Weekend Read — and only Weekend Read. What good would that be, exactly?
Theoretically, they could see that you are downloading the script for Looper from the For Your Consideration list.
That’ll make Rian Johnson happy. And I guess if you were sitting at Peets and you were downloading the top-secret screenplay for the next Avengers, someone could see that too. But I can guarantee you those scripts aren’t being emailed anywhere. And you probably shouldn’t be doing that on coffee-shop WiFi anyway.
Could you push a script into someone’s library? Like, fake an iCloud sync event so that a new script shows up?
That would be so hard but so cool.
It’s the new breaking-in strategy. Hacker wanna-be screenwriters hang around coffee shops and wait for movie execs to come in and then they secretly load their scripts into Weekend Read. It’s like the Blackhat List.
We should call Franklin Leonard. I think that’s a feature, not a bug.
Whichever it is, the AFNetwork issue will be closed in the next build.