The repository of the popular Syncthing fork for Android disappeared from GitHub and reappeared under dubious circumstances – is this an open-source hack?
Because there is currently no direct evidence of anything amiss.
You don’t need direct evidence of a problem. It’s the other way around — In order for the software to be trustable with private data you need steady, ongoing evidence that the authors are trustworthy.
National spy agencies are out there, right now, and recently in the news, trying to suborn open source project maintainers. This is a known risk.
You don’t need direct evidence of a problem. It’s the other way around — In order for the software to be trustable with private data you need steady, ongoing evidence that the authors are trustworthy.
National spy agencies are out there, right now, and recently in the news, trying to suborn open source project maintainers. This is a known risk.