Hello dear members of the community.
Thank you in advance.
-My developer uploaded a repository and gave me permission to read/write;
-I want a third party programmer have a look at the code to evaluate it with his expertise, but I want IN NO WAY, that he can copy and paste the code.
Is there a way? If yes please illuminate this humble NOOB that I am.
THANK YOU AND A GLORIOUS LIFE TO YOU ALL.
Wow guys! You're great. Thank you.
Again, excuse my noobness.
The situation is that I am having something developed, and I know almost nothing of coding (nor of bictbucket, for that matters), so I want an acquaintance of mine to have a look.
What could I do? Could I share only some parts of the code?
Consider that we're talking about a big project here, so even if he were malicious and he looks at, say, half of the data, it would still take him months, I guess, to clone.
Or are there some crucial parts from which he could judge the quality of the code, and still be hindered iin copying it, if he wanted?
There's no way to know that without looking at the code I'm afraid.
I would ask the developers if there are discreet chunks of code he could review that would not risk leaking stuff you don't want leaked.
But most people who need to do this sort of stuff sign a formal "Non disclosure agreement", which is a contract that imposes penalties if the reader shares or re-uses anything they see.
Here's a silly suggestion:
1. print the code you want to share with them
2. setup a secure room with a desk, chair, and the printed code
3. hire a security screening company to strip search the person to make sure they are not bringing any paper, electronics, pens, pencils, etc into (or out of) the secure room.
4. pray that they do not have a photographic memory
Sylvie, you hit ground on some ideas...
All is made a bit more complicated by the fact this guy is a new acquaintance... in process of becoming a friend.
So... I could actually present him the printed code, but wouldn't have a good reason for that,,,
No need for a security guard, that would be too much. And I bet he doesn't have such a good photographic memory...
But... were you serious??
It's nice to see so much women in such a geeky place, I couldn't imagine there were so many!
I may be a complete asshole in programming... but I am an ex- lawyer and I want to deal with legal staff a complete ZERO... and I know that a contract is, in the end JUST A PIECE OF PAPER.
Plus this guy is supposed to be a new friend... Either I trust him, or not. I cannot propose hime the signing of a contract. I believe that having him look at the code while with me would be the best option...
What you mean "with the code he has not a working product"? He is a good programmer... with a full code, wouldn't he be able to improve - eventually- and publish the app in no time?
A product needs source code but it also needs a build system to create the product from the source code, and then documentation, and an ordering system and then all the other things software companies do.
And if the person you trust ends up not being trustworthy, that's a risk with all relationships. If you really need to only show some of the code, use a private Bitbucket repo and upload a snapshot of some of the code there. He can even comment within the code with that approach
There used to be a joke about letting other countries see Large Router Company's source code so it would set them back six months trying to get it to work!
I think that the easiest way is to have your acquaintance sit at one of your PCs - without access to Internet. Of course you have to make sure he isn't plugging in any USB device, or taking photos to the screen.
If you need to know if you're doing anything silly with your code, consider using also some automatic tools to do some static code analysis - like SonarQube.
Exactly. The best tool to make sure your code quality is exceptional is SonarQube. By acquiring a license you make sure they are not copying your code, as per legal terms.
Moreover you can look for organizations which main activity is precisely to review code quality from others. Under strict legal consequences you make sure they are professionals that are not going to still your code :)
Bitbucket Pipelines helps me manage and automate a number of serverless deployments to AWS Lambda and this is how I do it. I'm building Node.js Lambda functions using node-lambda ...
Connect with like-minded Atlassian users at free events near you!Find a group
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no AUG chapters near you at the moment.Start an AUG
You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs
We're bringing product updates and pro tips on teamwork to ten cities around the world.Save your spot