What good does this comment do beside allow you to gloat and put others down? Li... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		cqqxo4zV46cp on June 25, 2024 \| parent \| context \| favorite \| on: Polyfill supply chain attack hits 100K+ sites What good does this comment do beside allow you to gloat and put others down? Like, Christ. Are you telling me that you’d ever speak this way to someone in person? I have no doubt that every single person in this thread understands what a supply chain attack is. You are arguing over semantics in an incredibly naive way. Trust relationships exist both in business and in society generally. It’s worth calling out attacks against trust relationships as what they are: attacks.

diego_sandoval on June 26, 2024 [–]

All other things being equal, a computer system that doesn't depend on trusting some external entity is better than one that does.

Sometimes, trusting is inevitable (e.g. SSL certificate authorities), but in this case, it was very much a choice on part of the developers.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact