[rdeboo]

How is it more secure? Do you read the entire source code to search for backdoors?

[tortasaur]

Web servers hosting binaries seem to be compromised more often than git repos. Transmission comes to mind as a semi-recent example.

[cwyers]

But this isn't a website hosting a binary. These are binary repos hosted by Apache, who self-hosts their VCS repos as well. The idea that Apache can be trusted to host one safely but not the other is absurd, and the idea that you are more likely to notice malicious tampering via MitM attack on 2.9 million lines of code than you are a binary is laughable.

[bovermyer]

I didn't say I agreed with the statement. Which I don't.