Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

How do I tell if code in a GitHub library is safe?

Posted on 2016-09-09
2
98 Views
Last Modified: 2016-09-12
While looking for a way to tell if 2 fields match for password verification, I found this Bootstrap framework on Github.

https://github.com/1000hz/bootstrap-validator

It's working well when I link to it, except that it runs slow.  I'd like to copy the source code to my webhost, and run it from there, but how do I tell if it's safe?  I don't want to compromise my server.

If anyone is using a bootstrap framework for password matches, that they know is safe, that might help, too.

Thanks,

Steve
0
Comment
Question by:stkoontz
2 Comments
 
LVL 2

Accepted Solution

by:
Dillyn Barber earned 500 total points
ID: 41792020
Best way is to analyze the code yourself and look for any back doors. Also check how many stars it has, how active it is, what issues are reported, etc. The best thing about github is you and millions of other people can view the entire source code to see what it's all about. In my opinion this looks safe, especially since it's only JS and from what I tell it only does what it says it does, I don't see any XSS attempts. If it seems slow it might be the CDN, or your connection to the CDN.
0
 
LVL 2

Author Closing Comment

by:stkoontz
ID: 41795030
Thanks for the help!

Steve
0

Featured Post

Free Tool: Postgres Monitoring System

A PHP and Perl based system to collect and display usage statistics from PostgreSQL databases.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

To properly understand GitHub, let’s divide it into two words ‘Git’ and ‘Hub’. Git is basically a ‘Distribution Version Control’ (DVC) and ‘Source Code Management’ (SCM) system widely used by software programmers while Hub means the efficient centre…
A publishing tool, a Version Control System, or a Collaboration Platform! These can be some of the defining words for the two very famous web-hosting Git repositories: Bitbucket and Github. Git is widely used amongst the programmers and developers f…
How to create a branch, fetch changes, and merge them into another branch using the EGit plugin for Eclipse.
How to reset a branch to a previous commit, and how to squash multiple commits into a single commit using the EGit plugin for Eclipse.

839 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question