[tuxcanfly]

> “Those DVCS kids, they got just what they deserved, won’t it be great when we can get back to a real VCS like Perforce”.

This entire article is based on the false dichotomy that either we use get along with github as it is or go back to svn.

Given the number of projects which directly pull code from github and execute it on production machines, it is not unreasonable to expect basic security from a hosting provider. I don't see why github should be given a second chance.

[bradleyland]

It also conflates DVCS (specifically, git) with the attack at Github. The security incident at Github had zero to do with DVCS in any way, shape, or form. Were Github to have been SVNHub, built on Rails, and lacking mass assignment controls, the same attack could have occurred.