Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Nobody actually inspects binaries anyway, what's the difference?


Why bother with python and open source then? Presumably every package you install with pip/uv would be source available and you could build them.

The idea behind most package managers including apt and pip is that they help you build the software and try to make it easier for you without actually downloading and trusting binaries.


>Why bother with python and open source then?

Because you can easily make changes to the software, not because it's way less likely to be backdoored.

>The idea behind most package managers including apt and pip is that they help you build the software and try to make it easier for you without actually downloading and trusting binaries.

I'm so deeply confused


>I'm so deeply confused

I can tell




Consider applying for YC's Summer 2026 batch! Applications are open till May 4

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: