I think the better strategy is to immediately ban nodes that violate the coding standards described, and put the onus on the node developers to fall into compliance. Good developers will be motivated to update quickly to see their work used. You shouldn’t leave potential dangerous nodes to be available to download.
There will be criminal liability for comfyui for knowing high-risk safety issues and willfully letting them persist for months. "use at your own risk" clauses don't apply when you act willfully negligent and willfully accept harm and danger to users by your actions.
So instead of taking immediate action, you give hackers and malware about three more months to endanger users. What a classy move. You neither respond to mails about security concerns and you have no trouble letting users get their computers hacked for another three months, hardware encrypted etc. because of comfyui.
I think the better strategy is to immediately ban nodes that violate the coding standards described, and put the onus on the node developers to fall into compliance. Good developers will be motivated to update quickly to see their work used. You shouldn’t leave potential dangerous nodes to be available to download.
There will be criminal liability for comfyui for knowing high-risk safety issues and willfully letting them persist for months. "use at your own risk" clauses don't apply when you act willfully negligent and willfully accept harm and danger to users by your actions.
So instead of taking immediate action, you give hackers and malware about three more months to endanger users. What a classy move. You neither respond to mails about security concerns and you have no trouble letting users get their computers hacked for another three months, hardware encrypted etc. because of comfyui.