cross-posted from: https://lemmy.ml/post/30846707

cross-posted from: https://lemmy.ml/post/30846701

The question is simple. I wanted to get a general consensus on if people actually audit the code that they use from FOSS or open source software or apps.

Do you blindly trust the FOSS community? I am trying to get a rough idea here. Sometimes audit the code? Only on mission critical apps? Not at all?

Let’s hear it!

  • linearchaos@lemmy.world
    link
    fedilink
    English
    arrow-up
    3
    ·
    1 month ago

    I mean, I might catch something intended and openly malicious.

    If it comes down to a buffer overflow somewhere or an exploitable race condition, I’m probably not going to see it anyway.