Except that if everyone assume that someone would have done the audit, it would also simply mean that no one have done it.

Just do a research on reddit or quora (or google ofc): there’s always the same kind of formatted response.

This is a foolish - if not dangerous - way of thinking.

    • Helix 🧬@feddit.de
      1·
      2 years ago

      About forks like ungoogled-chromium. I think I can trust them more than Google, as you don’t know what kind of binaries Google adds to your browser.

      Only if you check all of the code and only if you trust Microsoft that they don’t inject stuff in the Github binaries and only if you build it yourself every single time, as the project doesn’t feature reproducible builds.

        • Helix 🧬@feddit.de
          1·
          2 years ago

          At least in repositories there are supposed to be maintainers. I also don’t really trust them, but there’s no reason to trust the ungoogled people more than the maintainers of your distribution.

          The point is, you can trust nobody.