undefined | Better HN

0 pointsdwd5mo ago0 comments

A simple search across a codebase for "TODO" will find all sorts of things left undone, but having access to source control and commit messages, who knows what you might find.

"Here be dragons" is also a good search if you're responsible for security hardening legacy code.

0 comments

bangaladore5mo ago

Yeah, it's unclear if this is something like TODO or an internal Jira tracking bugs.

Either way though, this is not a small company. DoD/Navy utilizes this all over their systems. TODO shouldn't be getting pushed to main, nor should there be security issues swept under the rug for later.

Maybe they disclosed this to some vendors previously, but I doubt.

j / k navigate · click thread line to collapse

0 pointsdwd5mo ago0 comments

A simple search across a codebase for "TODO" will find all sorts of things left undone, but having access to source control and commit messages, who knows what you might find.

"Here be dragons" is also a good search if you're responsible for security hardening legacy code.

0 comments

bangaladore5mo ago

Yeah, it's unclear if this is something like TODO or an internal Jira tracking bugs.

Maybe they disclosed this to some vendors previously, but I doubt.

j / k navigate · click thread line to collapse