|
|
|
|
|
|
by yjftsjthsd-h
282 days ago
|
|
|
> but provide some kind of 'verified' badge to the package I would worry that that results in a false sense of security. Even if the actual badge says "passes some heuristics that catch only the most obvious malicious code", many people will read "totally 100% safe, please use with reckless abandon". |
|
|