Comment by x0x0

Their CI / script runner tool is still total garbage. Starting with the rampant security holes (oh, make sure you pin everything you use by hash, which essentially nobody does; what was that about secure by default rather than secure by extra effort again?) and following with the only way to test it is to deploy over and over.