Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

I think you'd get far more traffic if you linked to a page that actually has information (https://code.headmelted.com/) instead of to the list of builds!

In any case, this is awesome and I'll definitely give it a try



Thanks, we've updated the link from https://github.com/headmelted/codebuilds/releases.


Thanks for this, wasn't sure which was best to use.


Ah, I see we're still doing "run the output of this url as root" installation..


That's how all executable code is distributed outside of a package manager.

Ever downloaded an EXE on Windows or DMG on Mac? It's the same, except you can inspect the code doing it this way if you were worried.


Good thing nothing bad ever happened because someone ran an EXE they downloaded off a Web site...


Windows will complain if you download and try to run an unsigned exe. While APT packages can be signed, wget|sh can't be, so it's comparatively easier for someone to trojan the website and distribute malware.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: