Comment by blub
5 years ago
If personal info or CC data gets leaked, the company which used this library/framework will be found legally liable. Using random code from github is not a valid product development strategy.
The author can write their entire code in an unsafe block for all they care. The buck stops with those that use the framework and that is made quite clear in the license.
Welp.
Time to close up shop folks, we didn't personally perform a deep security audit of every single open source project we depend on!