Hacker News new | ask | show | jobs
by FridgeSeal 2110 days ago
Are you not worried about people writing arbitrary code to do stuff? I've been burnt before where devs used Turing complete languages (python in my case) to generate configs in probably the most convoluted and complicated manner possible. It was impossible to debug and understand, there were side-effects literally everywhere. It was everything you'd imagine from a normal bit of bad code, but it also happened to spin up hardware.
2 comments
shimmerjs 2110 days ago
As long as the code is generating something like configs, you can write guard rail sanity check tests against the output, or apply linters, etc.
link
FridgeSeal 2109 days ago
But now you’re writing code to generate config and code to verify your configs.
link
1ba9115454 2109 days ago
As it's infrastructure as code it would go through code review. So in that case I wouldn't be worried.
link