In house code could very well have many fewer vulnerabilities, as you only write... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		jimbokun on Jan 8, 2025 \| parent \| context \| favorite \| on: Mistakes engineers make in large established codeb... In house code could very well have many fewer vulnerabilities, as you only write exactly the functionality you need, vs pulling a large dependency and only using a small percentage of the API.

lmm on Jan 8, 2025 [–]

> pulling a large dependency and only using a small percentage of the API.

This is normally a direct result of trying to limit the number of dependencies. People are much more able to use small, focused dependencies that solve specific problems well if you have a policy that permits large numbers of dependencies.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact