• unique_hemp
      link
      fedilink
      arrow-up
      4
      ·
      8 months ago

      Love the part where he claims that if your users are authenticated, it’s not untrusted input. I mean, surely you trust all of your users to run any code on your server, right?

    • Gabu@lemmy.ml
      link
      fedilink
      arrow-up
      3
      ·
      8 months ago

      Impressive and unsurprising. As soon as you start getting complex libraries with multiple dependencies it becomes nearly impossible to review everything. At one time I had an interest in contributing to some AI libraries, but they’re a mess as soon as you go looking for points of improvement.