Hacker News new | ask | show | jobs
by jpatokal 4884 days ago
And you're proposing to get a less misleading metric for undiscovered or uncreated (!?) vulnerabilities how, exactly?
1 comments
postmodern_mod3 4884 days ago
Maybe graph the rate of vulnerabilities discovered vs. LoC/files added?

It's safer to only use vulnerability counts as a metric for how interesting software is to security researchers.

link