How can the validity and safety of a software library be checked?
So beyond looking at the source code for particular software library, is there a way to vet that it does not contain malicious code? As far as I know from my own research, services like pip, npm, and composer do not provide a… Continue reading How can the validity and safety of a software library be checked?