Has this been answered before. All of these phenomenal edge drivers that community members and creating and publishing, what’s to stop them from simply deleting it and/or updating one and perhaps screwing it up.
I’m not saying anyone would even do this and I’m forever grateful for them but was wondering what would actually happen? Would your devices just stop working? Can you install a driver and then stop things like this happening?
You can unenroll from the driver channel if you don’t want updates. The driver will remain installed. If you don’t trust the developer to send clean updates, I’m not sure I’d trust the initial version either. These drivers are sandboxed from the internet and from each other, so I’m not sure there is much malicious activity that can occur, that couldn’t be solved by just uninstalling the driver.
I don’t understand why Smartthings doesn’t simply provide an option to “lock” drivers in the installed state and disallow automatic updates. This could be done for individual drivers, for all drivers of a certain developer, or for all installed drivers. Anything would be better than no option at all, as it is now.
For me, this is not really a security question, but a question of keeping my smart home in a functional state. ANY automatic update can break functionality, on any platform.
This is not the reason I have kept some of my Edge driver source code off GitHub and/or open sourcing. Some of my work is there, some of it is not. Reasons vary for both but none of them are about monetizing anything on Edge.
You forget that there may be more reasons not to publish all the code I have right now.
For example, I don’t want to monetize any of my work, apart from the fact that just like you did, some users have invited me to a beer and I appreciate it.
I just want to solve the problems with my devices and share them with whoever wants to receive them, but I also don’t want another user, who doesn’t share his code, legitimately, to monetize the code for me by copying and pasting.
I have it in my will that if I die suddenly they publish all my drivers that are not published
More than a year ago I commented in another post that it would be good if automatic updates were optional, although the only thing that achieves this is that we wait to see if someone breaks something or not before updating