My rule of thumb is: if I can’t afford to write my own test suite for a package (and all packages it transitively includes), I don’t use it. Package managers make it far too easy to rope in code of completely unknown provenance and quality.https://twitter.com/GordonHughes/status/1012432108244041729 …
-
That's going to rule out a lot of known-useful things, like Eigen, isn't it?
Third-party test suites/benchmarks of adequate quality are acceptable, but I’m still auditing transient dependencies closely (this is often neglected), and I’m probably still writing my own test cases for the subset of the library I use.
-
-
A transitive dependency audit especially sounds valuable, as nice libraries are occasionally encumbered by marginal dependencies that bring only limited value. Could be an opportunity to post issues about those dependencies.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.