Y
Hacker News
new
|
ask
|
show
|
jobs
by
throwaway4891a
3467 days ago
I'm not using 1.0.0+ until it's codesigned and/or dmg gpg verifiable with a known-good signature.
Do not install untrusted, unverifiable apps is security 101.
1 comments
nradov
3466 days ago
Just download the source code, audit it, and built it yourself.
link
jonnytran
3466 days ago
Who has the time to audit the source code of all the code they'd like to run on their computer? If you find them, I'd pay them to audit it for me, build it, and sign it so that I don't have to.
link