Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

> could happen with any project, and switching tools doesn’t provide meaningful protection

Do you believe that developments practiced have an impact on security bug rate? Second, do you believe that past track record is reflective of that security bug rate?

These are two reasonable beliefs that many people hold. It's a far more nuanced view than "every project could have bugs" which is a black-and-white view that does not assess risk in a useful way.



Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: