[fweespeech]

> I see a few people^W^Weveryone here talking about security. If you didn't read the whole blog post, you might not have noticed the new Linode manager that we're working on being mentioned. Check it out, it's open source: https://github.com/Linode/manager

Open sourcing the UI while keeping the actual portion that manipulates the data + handles authentication ( the API ) doesn't have substantial security benefits since its largely available to the end user already.

While I am sure you are correct that the rewrite in Python is easier to reason about and more secure, I feel the way you've presented it might imply it is secure because the source is available which is not the case.

[Sir_Cmpwn]

I don't think I'm implying that by making the manager open source we are making it more secure. The place where security gains come into play is things like the new design of a stateless API talking to a static frontend app, which I think is a much less fragile system in terms of security.

And yeah, the Python API is much easier to reason about security-wise in general.