All software runs on somebody's hardware. Ultimately even an utterly benign program like `cowsay` could be backdoored to upload your ssh keys somewhere.
replyhttps://xkcd.com/2347/ , but with `fortune -a` and `cowsay` instead of imagemagick
replydeleted
replyThe industry needs to step up and plant a flag for professionalization certifications for proper software engineering. Real hard exams etc
replyI can't even imagine what these exams would look like. The entire profession seems to boil down to making the appropriate tradeoffs for your specific application in your specific domain using your specific tech stack. There's almost nothing that you always should or shouldn't do.
reply