shazow
@shazow.eth
@woj.eth any updates on the open sourcing of supercast? <3
1 reply
0 recast
2 reactions
woj
@woj.eth
will open source after shutting down, but so far i prefer to keep it alive since there are people regularly using it cant keep it up while open sourced because there is too much at risk for a project that is not maintained anymore
1 reply
0 recast
2 reactions
shazow
@shazow.eth
what's at risk? like in the security through obscurity sense?
1 reply
0 recast
0 reaction
woj
@woj.eth
for 95% of supercast lifespan i’ve been a solo dev shipping on a daily cadence always taking security seriously but there have been issues in the past (luckily all reported and fixed together with the farcaster community cc @stevedv.eth)
2 replies
0 recast
2 reactions
woj
@woj.eth
what’s at risk? signers of basically every big account on this app
1 reply
0 recast
1 reaction
shazow
@shazow.eth
yea i get that concern, not sure this is "the solution" but the fear and challenge is real for projects that haven't been OSS from the start. easy for incorrect assumptions to sneak into code decisions when things are proprietary, hard to hunt them all down later. do you think we need somekind of partial-delegated app keys that don't have full takeover capability for trying out new/risky apps?
1 reply
0 recast
0 reaction
woj
@woj.eth
> do you think we need somekind of partial-delegated app keys that don't have full takeover capability for trying out new/risky apps? yeah i imagine we will move towards it post farcaster pmf on open sourcing: i’ve been considering running it open source since the beginning, but it’s always the same tension before shipping fast or open sourcing maybe possible if you have a full team with experience working in such environment (bluesky kinda pulled it off) but it’s surely a recipe for disaster for small lean teams who never worked with an open source codebase even harder for solo devs ofc
0 reply
0 recast
1 reaction
