Six degrees of separation
Six degrees of separation
Posted Sep 5, 2025 1:35 UTC (Fri) by neilbrown (subscriber, #359)In reply to: Six degrees of separation by johnfrombluff
Parent article: The hidden vulnerabilities of open source (FastCode)
The problem I have with the web of trust is that trust is not transitive.
I trust various people and I trust different things about each. I trust this person's opinion on food, that person's opinion on music, the other person's judgement of character. In at most one of those cases is there any possibility of transitivity and it is very limited.
I trust various people and I trust different things about each. I trust this person's opinion on food, that person's opinion on music, the other person's judgement of character. In at most one of those cases is there any possibility of transitivity and it is very limited.
Trust of people is important in software development, but it mostly relates to the social aspects. Code must be analyzed and tested on the assumption that it is buggy no matter who wrote it.