|
|
|
|
|
|
by dwd
244 days ago
|
|
|
A simple search across a codebase for "TODO" will find all sorts of things left undone, but having access to source control and commit messages, who knows what you might find. "Here be dragons" is also a good search if you're responsible for security hardening legacy code. |
|
|
Either way though, this is not a small company. DoD/Navy utilizes this all over their systems. TODO shouldn't be getting pushed to main, nor should there be security issues swept under the rug for later.
Maybe they disclosed this to some vendors previously, but I doubt.