Y
Hacker News
new
|
ask
|
show
|
jobs
by
ashishbijlani
550 days ago
> If the tech is open-sourced, then an attacker can keep trying in private until they find an exploit, and then use it.
So you'd rather assume that if something is obscure, it is secure?
1 comments
amelius
550 days ago
I'm just pointing out a huge downside of the approach and that more measures such as pen testing are really needed. I don't want to be right, I want a secure PyPI <3
link