Why? If you are using a crate, its code will be running in your application. Its... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		winstonewert on Nov 11, 2023 \| parent \| context \| favorite \| on: SciPy builds for Python 3.12 on Windows are a mino... Why? If you are using a crate, its code will be running in your application. Its not really any more of a concern if it can run code while building.

oblio on Nov 13, 2023 [–]

Yeah, but with binary packages you can add another lay of defense in depth, signed packages, signature checking, etc. It's not just about the original authors themselves, it can also be about attacks on the public repositories, for example.

Consider applying for YC's Winter 2026 batch! Applications are open till Nov 10
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact