SatyrSack@lemmy.one to

Open Source@lemmy.mlEnglish · 2 months ago

Ventoy source code contains some unknown BLOBs, still no word on the issue from the dev after months

3

Ventoy source code contains some unknown BLOBs, still no word on the issue from the dev after months

SatyrSack@lemmy.one to

Open Source@lemmy.mlEnglish · 2 months ago

[issue]: Remove BLOBs from the source tree · Issue #2795 · ventoy/Ventoy

What happened? Due to the recent XZ-Utils drama I checked the code and I'm appalled. There are more BLOBS than source code. https://github.com/ventoy/Ventoy/tree/3f65f0ef03e4aebcd14f233ca808a4f8946...

I had no idea this issue had been identified. While I find this tool very useful, the project is seeming rather questionable to me now.

Chat

delirious_owl@discuss.online
link
fedilink
arrow-up
0·
2 months ago
Aaaand thats why all commits should be signed with your pgp key
- kautau@lemmy.world
  link
  fedilink
  arrow-up
  2·
  2 months ago
  It sounds like they weren’t using any form of version control, so that’s definitely on them at this point

Open Source@lemmy.ml

opensource@lemmy.ml

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !opensource@lemmy.ml

All about open source! Feel free to ask questions, and share news, and interesting stuff!

Useful Links

Rules

Posts must be relevant to the open source ideology
No NSFW content
No hate speech, bigotry, etc

Related Communities

Community icon from opensource.org, but we are not affiliated with them.

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

1.5K users / day
2.33K users / week
4.42K users / month
9.24K users / 6 months
1 local subscriber
31K subscribers
1.45K Posts
16.1K Comments
Modlog