Hacker News new | past | comments | ask | show | jobs | submit login

Encouraging users to run some random binary from GitHub is a really good way to spread all kinds of viruses. People should only run binaries from trusted sources.



Compiling and running random git projects isn't that big of a step up.


You're totally right, it's just as bad, maybe even worse because build tools sometimes ask for admin permissions. People should ideally really on some kind of reputation system or get software from trusted vendors.


Like a package manager with maintainers, ie. Deb, RPM, etc.


Or like Apple's App Store or the Google Play Store?

All of these, along with those package managers have had malware posted to them.


You probably don't run curl | sudo bash either but other people have different threat models.


I do sometimes, when the source is trustworthy.




Consider applying for YC's Fall 2025 batch! Applications are open till Aug 4

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: