Moreover, the claim that they can harm the software is unwarranted because it is OPEN and many eyes are on it.
The xz attack was an intentional backdoor put into a project that was “OPEN and many eyes are on it.” Also, it was discovered due to the way it was executing and not because someone found it in the source. The original assumption has been proven wrong.
xz attack was an open source attack and it would be silly to assume that it was unique.
This has nothing to do with xz
I don’t think you understood their point.
What did I miss?
In response to:
The xz attack was an intentional backdoor put into a project that was “OPEN and many eyes are on it.” Also, it was discovered due to the way it was executing and not because someone found it in the source. The original assumption has been proven wrong.