No it doesn't have security implications. If you are insecure because someone has had one of ...

orlp • yesterday at 4:21 PM • 2 replies • view on HN

No it doesn't have security implications.

If you are insecure because someone has had one of their otherwise completely innocent PRs merged into your repo... you are insecure, period.

lgrapenthin • yesterday at 4:30 PM

What you are describing is exactly a security implication.

stavros • yesterday at 4:36 PM

Security isn't a binary "secure/insecure". You can be more or less secure than something.

alt Hacker News