Google: let's make an app using Electron which is like a browser but without the urlbar. what could go wronghttps://twitter.com/SecurityMB/status/1021464816370798592 …
-
-
The general principle here is, like, don't ship an emulator/vm/whatever with your product that wants to run in it. Work with the properly maintained & secured distribution model for it unless you can do better yourself (you can't or you wouldn't be shipping js apps).
-
People just want portable software with cute UI that doesn't require a large team to maintain across platforms (sometimes they also want it to work offline). Electron is an unsafe but understandable attempt at filling that niche.
-
The exact same problem is solved by just shipping a tiny webserver to run on localhost & a shortcut to open it with the user's existing preferred browser.
-
But people won't do even that, also "looks" are more important than function for most startups. An installation "looks" legit.
-
Clearly the "look" of consuming 20GB of ram and your users getting pwned by vulns is better than the look of a browser window...
-
Users seem to associate these practices with what the "big guys" do. Or at least, start-ups decided as much, which in practical terms it's the same.
End of conversation
New conversation -
-
-
Microsoft buying GitHub means Microsoft will finally be able to kill an open source project worth killing!
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
As long as we're keeping the particle. I can't cook without electrons, it ruins the flavors.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.