technomancyNov 9, 2025

whenever I hear about people installing millions of lines of code from someone they've never heard of from npm or whatever, I imagine them finding a hot dog on the side of the road

and they're like "oh cool; free hot dog!" and I'm like "you're going to eat that?" and they're like "yeah of course; it's a free hot dog! have to be crazy to turn that down" and I'm like "huh"

Show threadToddZ Ⓥ
@technomancy
But it’s an open-bun hot dog. Anyone can inspect it, and no issues have been reported. 😋👍
May 26 at 11:43pmWeb
Show threadpunIssuerMay 27
@toddz @technomancy fwiw, there's a few orders of magnitude less incentive to leave a poisoned hotdog on the pavement than there is to spike a software repo with malware
Show threadGentleman Technologist4d ago

@toddz @technomancy anyone *can* inspect it, yes.

But the average hot-dog eater doesn’t even glance at the actual meat. They read the label, shrug and say “that sounds vaguely like what I need” and chow down.

And there’s the bunch of folks that wouldn’t know *how* to inspect it because they have no idea how good hot dogs are actually made, having only ever eaten random hot dogs they found on the street.