|
|
|
|
|
|
by eru
1264 days ago
|
|
|
> This is a general problem with binary files: they're hard to properly review. Having unreviewable files in a repository (binaries, machine-generated configs, etc.) is already a security problem; hash collisions would just be one (very difficult) way of exploiting that problem. That's not a problem in general. Eg having a binary bmp in your repository is fine as far as reviews go. |
|
|