Its way less work than going through the code to check for telemetry unless it is an intentionally hidden attack- just use Wireshark and check if there is network traffic other than checking for an update on program start.
Comment on Audacity adds AI audio editing capabilities thanks to free Intel OpenVINO plugins
books@lemmy.world 2 months agoPoint a has always me me wonder, is that accurate? Are there actually people going through the code to make sure open source isn’t malicious? I can barely read my coworkers code… Let alone a strangers.
aidan@lemmy.world 2 months ago
lemmeee@sh.itjust.works 2 months ago
If a project is popular people will make changes to it every day. But you can look at the repo and judge for yourself.
xor@infosec.pub 2 months ago
people are definitely going through the code on a project as popular as audacity…
less well known stuff is much less scrutinized, of course