pull down to refresh

0 sats \ 1 reply \ @adlai 4 Nov \ parent \ on: My 2 sats constructive critique for Lightning.Pub / ShockWallet lightning
I realise there's a tradeoff, and you're definitely correct about the usability.
Maybe the better approach is a verbal warning, separate from the copy-pasteable command, along the lines of "this command installs a program, don't run it on critical systems" and encouraging that people have separate hardware for critical systems. That's definitely twice as much maintenance, although it is much easier for someone to reason about security considerations when the sensitive system is a physically separate computer.
write
preview
133 sats \ 0 replies \ @justin_shocknet 4 Nov
It's a pretty common practice, I think I borrowed the idea from nvm, bun, and other things
Even more stuff just adds apt repos to the keyring which is worse imo.
This way you can view the code in browser and see it runs from GitHub.
We did recently drop the sudo requirement for user space isolation.
It's really meant for quick lean VPSs or old laptops nodes without the docker bloat.
If someone has a critical system and isnt cloning from GitHub manually they got bigger issues.
reply