As an IT pede whose jobs is identifying and fixing other IT enginners mistakes i can tell you with 100% certainty that any code change can cause unexpected issues.
More importantly unless provided with a code diff of the changes, there is no way to tell if other components changed, sneaked in, etc.
Also unless the change was a branch/fork from the approved code it is possible the patches incorporated other changes from the source code repository. Seen this happen many times.
That is why, unless code is opensourced or NDA signed to see full code, diff changes and validate code hashes. You will never truly know if something was snuck in or a backdoor installed allowing one time code injection.
I have learned too often that vendors do all sorts of shady shit with their code, hence why they dont want you to see it. Bad coding practices, backdoors, security holes you name it.
Vote counting should not be a business but a regulated service, national security level checks, and opened sourced with proper auditing on full life cycle and processing chains to insure integrity.
As an IT pede whose jobs is identifying and fixing other IT enginners mistakes i can tell you with 100% certainty that any code change can cause unexpected issues.
More importantly unless provided with a code diff of the changes, there is no way to tell if other components changed, sneaked in, etc. Also unless the change was a branch/fork from the approved code it is possible the patches incorporated other changes from the source code repository. Seen this happen many times.
That is why, unless code is opensourced or NDA signed to see full code, diff changes and validate code hashes. You will never truly know if something was snuck in or a backdoor installed allowing one time code injection.
I have learned too often that vendors do all sorts of shady shit with their code, hence why they dont want you to see it. Bad coding practices, backdoors, security holes you name it.
Vote counting should not be a business but a regulated service, national security level checks, and opened sourced with proper auditing on full life cycle and processing chains to insure integrity.