Very true. There was an issue in one of the linix communities a while where someone got away with submitting malicious code. It was eventuslly discovered and corrected, but it does go to show that bad actors can do some serious damage to open source projects.
Although this is fair, those contributors were from a research group from a prestigious university. That makes them much more trustworthy by default, and its natural that a code reviewer will give them more benefit of doubt.
You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: [email protected]
Rules:
Be civil and nice.
Try not to excessively repost, as a rule of thumb, wait at least 2 months to do it if you have to.
Very true. There was an issue in one of the linix communities a while where someone got away with submitting malicious code. It was eventuslly discovered and corrected, but it does go to show that bad actors can do some serious damage to open source projects.
Although this is fair, those contributors were from a research group from a prestigious university. That makes them much more trustworthy by default, and its natural that a code reviewer will give them more benefit of doubt.
I remember this, wasn’t this a complete shitshow in the news?