I raised concerns about deficiencies of their RBAC on their Slack before and they immediately started pushing me to their enterprise offering. I thought it was a red flag but have not imagined they would stoop to this.
When we started using them they seemed like a genuine open source. Is there a term for open source traps like that? If not we need to come up with something. Trapware?
It could be argued that acquiring a whole security-focused company is a signal they’re seriously reconsidering their approach to security and deserve a benefit of the doubt.
I might be missing something here, but how does the knowledge pandemic and about the severity of the disease about qualify as insider information? I guess this guy can be accused of not expressing his real beliefs to the public (to contain the panic as he would surely argue), but that is not the same as insider trading.
It really helped in our case. We have a team of 10+ researchers who alse ship code in production. They were repeatedly running into a problem where they recompute same data in runtime, or reinvent the wheel because they didn’t know somebody already computed that datum. I end up writing a small single-process (for now) workflow engine running a “company-wide DAG” of reusable data processing nodes (all derived from user-submitted input + models). Now it is much easier for individuals to contribute + much easier to optimize pipelines separately. I might open source it some time soon.