People tend to believe that free and open source softwares (FOSS) are way more trustable than proprietary softwares… and I want to believe this idea. Unfortunately, the idea behind this blog post is that it is not because a software has a free or open source licence that someone already checked and validated its full source code (including the dependencies)! As an example, how many times did you put a star on a github project without checking the code at 100%? Doing this, you can unfortunat...
