Do State The Obvious


If you are into open source and a bit of a neophiliac when it comes to discovering new software, chances are you have read something akin to the following statements etched proudly at the top of some project’s README on GitHub:

Yo! X helps you write applications that behave consistently, run in different environments, and are easy to test. It is fast, simple, reliable with zero-overhead production readiness and nada ceremony.

You know why?

Because sometimes people wake up in the morning and ask themselves: “What shall I do today? Oh, I know! I shall design a framework that forces applications to behave terribly inconsistent and of course, they must all run in the same exact environment down to the kilobyte level. Not only the application must be crap to test but it must be slow, Lost-The-TV-Show-level convoluted with so much overhead that once you’re done with production, you will yourself wholeheartedly finance a “Thank the Gods for we are forever done with this junk” ceremony.

Yes. Yes. That happens, which is why projects need to explicitly state the obvious opposite.

Seriously[?],

Misagh Moayyed

Related Posts

Apereo CAS is now on Develocity

An overview of how Apereo CAS is using Gradle and Develocity to improve its build and test execution cycle.

CAS OAuth/OpenID Connect Vulnerability Disclosure

Disclosure of a security issue with the Apereo CAS software acting as an OAuth/OpenID Connect provider.

CAS Groovy Vulnerability Disclosure

Disclosure of a security issue with the Apereo CAS software when using Groovy.

CAS OpenID Connect Vulnerability Disclosure

Disclosure of a security issue with the Apereo CAS software acting as an OpenID Connect Provider.

CAS X.509 Vulnerability Disclosure

Disclosure of a security issue with the CAS software and its X.509 features.

CAS OpenID Connect Vulnerability Disclosure

Disclosure of a security issue with the CAS software acting as an OpenID Connect Provider.

CAS OpenID Connect Vulnerability Disclosure

Disclosure of a security issue with the CAS software acting as an OpenID Connect Provider.

CAS OpenID Connect Vulnerability Disclosure

Disclosure of a security issue with the CAS software acting as an OpenID Connect Provider.

CAS Spring Framework RCE Vulnerability Disclosure

Disclosure of the Spring framework RCE security issue with the Apereo CAS software.

CAS OpenID Connect Vulnerability Disclosure

Disclosure of a security issue with the CAS software acting as an OpenID Connect Provider.