codesandbox-ci[bot]
commented
2 months ago This pull request is automatically built and testable in CodeSandbox.
To see build info of the built libraries, click here or the icon next to each commit SHA.
Closed ljharb closed 3 weeks ago
codesandbox-ci[bot]
commented
2 months ago This pull request is automatically built and testable in CodeSandbox.
To see build info of the built libraries, click here or the icon next to each commit SHA.
wojtekmaj
commented
2 months ago This is a Trojan horse pull request. The PR title clearly states that the purpose is to "test built code". In reality, the PR:
If you're making changes like this, at least be honest about it. There's nothing to be ashamed of, or is there?
AaronDewes
commented
2 months ago To be fair, the actions are pinned to a commit. There isn't a risk of malicious code being added there. The deps are more dsngerous though, but there is always some trust in maintainers involved.
yamiteru
commented
2 months ago LGTM
HawkeyePierce89
commented
2 months ago I want to remind you that the previous Trojan pull request was accepted in the neighboring repository https://github.com/A11yance/axobject-query/pull/354
The more you allow someone, the more brazen they become
nitelite
commented
2 months ago Doesn't look good to me.
ljharb
commented
2 months ago These are all dev deps, and as such, it doesn’t make sense for anyone but maintainers to have an opinion on them.
@wojtekmaj there’s nothing dishonest here, and accusing me of doing something “sneaky” is an absurd accusation.
This is effectively the same PR as https://github.com/A11yance/axobject-query/pull/356.