What is Nostr?
banjo
npub1jnm…k5lw
2024-10-25 17:06:50
in reply to nevent1q…ulz0

banjo on Nostr: Your last sentence is important--what you're really asking (or assuming) is that we ...

Your last sentence is important--what you're really asking (or assuming) is that we can "trust" the code more in signing extensions (and frankly that may not be the case).

This is one of the weaknesses in the open source community. We all assume that because the code is available to all, it's "good".

But what really happens (in more cases that we might want to admit) is the only "audit" the code receives is from the original developer--I'd even dare to say that most projects out on git hub probably receive very little (if any) code review prior to being released.
Author Public Key
npub1jnmx5cfc5g8pyr80hc6rzqccdqzgg7kevxf3vas78em2qck4lmgqpsk5lw