|
|
|
|
|
|
by danielEM
1415 days ago
|
|
|
Yesterday was about to install CudaText, but as usually with such software, before jumping to anything started to read about your project and you and accidentally got to that quote mentioned above. I must admit, it got me spooked. I have a lot of respect to people who do contribute to open source so I do to you, but in current situation my concern is actually safety and trust. For example I don't think I can give you a trust to binary packages, like in this case: https://aur.archlinux.org/packages/cudatext-gtk2-bin Even if they are not containing anything malicious at this moment, it can happen at any time later, especially after gaining a trust of significant amount of devs. And even with your best intentions I can clearly see a scenario where it will happen against your will or even without your knowledge. You know - it is different thing to trust you, and different thing to trust your state... Anyway, hope this whole war madness (or "special operation" as you're allowed to call it) will end soon. |
|
|
About trust to binary packages: some ppl do build CudaText from source, we have even the bash-script to download the sources + compile them. https://wiki.lazarus.freepascal.org/CudaText#How_to_compile_...
If you afraid to get Pascal code with backdoors: Pascal code does not use any internet libs. Python Addons-Manager uses inet-libs though.