• jas0n@lemmy.world
    link
    fedilink
    English
    arrow-up
    1
    ·
    26 days ago

    In response to:

    Moreover, the claim that they can harm the software is unwarranted because it is OPEN and many eyes are on it.

    The xz attack was an intentional backdoor put into a project that was “OPEN and many eyes are on it.” Also, it was discovered due to the way it was executing and not because someone found it in the source. The original assumption has been proven wrong.

    • aidan@lemmy.world
      link
      fedilink
      English
      arrow-up
      1
      ·
      25 days ago

      Oh, yep I didn’t see that. Though definitely more eyes are on Linux than were on xz