this post was submitted on 28 Jun 2025
1 points (100.0% liked)
Experienced Devs
4597 readers
1 users here now
A community for discussion amongst professional software developers.
Posts should be relevant to those well into their careers.
For those looking to break into the industry, are hustling for their first job, or have just started their career and are looking for advice, check out:
- Logo base by Delapouite under CC BY 3.0 with modifications to add a gradient
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
The actual question I'm reading from this is "are components that I build myself more secure than those provided by a third party library?"
You should correct me if that's not what your asking.
The short answer is "probably not." You can and will introduce bugs and vulnerabilities into your own software.
The main downsides of third party libraries are that they can have dependencies that you may not know about and vulnerabilities in third party libraries mean that a given vulnerability is just as widespread as a the library that it exists in.
Most "bad actors" are opportunists so a specific vulnerability being wide spread tends to work in their favor by increasing opportunities.
That said, I wouldn't waste your time rewriting functionality that already exists in other libraries unless you have a very compelling reason for it.