I'm mostly worried about the security of the build/distribution platform, which is why I would would prefer a reputable package manager to provide binaries built and distributed using their own infrastructure. If this isn't feasible, better support for building from source would at least ensure that the binaries are correct, provided that your own computer isn't compromised.
Homebrew Cask currently can't address this kind of situation, since the binary is still built and distributed from non-reputable sources.
The correctness of the source code itself is surely a problem, but it's better than having to trust random binaries built and distributed from non-reputable sources.
Homebrew Cask currently can't address this kind of situation, since the binary is still built and distributed from non-reputable sources.
The correctness of the source code itself is surely a problem, but it's better than having to trust random binaries built and distributed from non-reputable sources.