| ▲ | rebolek 4 hours ago | |
Maybe they should go open source from the start, then there's nothing to leak. P.S.: And strangers will sometimes help you find vulnerabilities (and sometimes be very obnoxious but that's not open source's fault). | ||
| ▲ | matsemann 12 minutes ago | parent | next [-] | |
When I worked for the government in Norway, it slowly changed to all code being developed in the open. 3k repos here now: https://github.com/orgs/navikt/repositories When I started it was a big security theater. Had to develop on thin clients with no external internet access, for instance. Then they got some great people in charge that modernized everything. Only drawback is when you quit, you have to make sure to unsubscribe from everything, hehe. When quitting a private company I was just removed from the github org. Here I was as well, but I was still subscribed to lots of repos, issues, PRs,heh. | ||
| ▲ | ZaoLahma 3 hours ago | parent | prev [-] | |
Yeah. In these cases it's not like anyone is going to spin up their own instance and start competing with you. Government / handles society-critical things code should really be public unless there are _really_ good reasons for it not to be, where those reasons are never "we're just not very good at what we're doing and we don't want anyone to find out". | ||