Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

If you dump a 400 page output dump of some static analysis tool on a FOSS project, not much will happen either. They will probably challenge you to find the actual issues yourself and enter bug reports.


Yes, agreed. Especially if, after checking out the first 100 or so, all of them are false positives.

But the big difference is that it's realistic, allowed and in many cases warmly welcomed if you submit actual problems.


Yes, but all other things equal, wouldn't you rather know what's in there?

Sun had an open bug database, it was glorious. That got snapped shut after purchase.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: