mvanrijnen 123 Posted April 7, 2021 It's about: GitHub - StockSharp/StockSharp: Algorithmic trading and quantitative trading open source platform to develop trading robots (stock markets, forex, crypto, bitcoins, and options). I want (maybe) use it for a custom trading bot, but it's Russian, so people heard about this, can it be trusted? Share this post Link to post
Rollo62 536 Posted April 7, 2021 (edited) 33 minutes ago, mvanrijnen said: ... but it's Russian, so people heard about this, can it be trusted? ... Yes, of course. I think all major hackers put russian and chinese Unicode strings in their code, but in reality they live in in San Francisco, Redmont and Cupertino But jokes aside, why don't you look into the sources, to find something suspicious ? Hackers are usually very eager to leave their tags anywhere. Edited April 7, 2021 by Rollo62 Share this post Link to post
Anders Melander 1783 Posted April 7, 2021 (edited) 35 minutes ago, Rollo62 said: Hackers are usually very eager to leave their tags anywhere. N0n53N53. /733t d00d3 Edited April 7, 2021 by Anders Melander ;-) 1 Share this post Link to post
mvanrijnen 123 Posted April 7, 2021 Better question, anyone knows a framework like this for Delphi ? Share this post Link to post
Fr0sT.Brutal 900 Posted April 7, 2021 2 hours ago, mvanrijnen said: I want (maybe) use it for a custom trading bot, but it's Russian, so people heard about this, can it be trusted? Of course absolutely no. Evil Russian hackers will drain all of your bitcoins in seconds just between faking US votes and drinking vodka with their bears 3 Share this post Link to post
Andrea Raimondi 13 Posted April 8, 2021 12 hours ago, mvanrijnen said: It's about: GitHub - StockSharp/StockSharp: Algorithmic trading and quantitative trading open source platform to develop trading robots (stock markets, forex, crypto, bitcoins, and options). I want (maybe) use it for a custom trading bot, but it's Russian, so people heard about this, can it be trusted? Hi! I don't know that any specific repo can be trusted when it comes to BTC etc. without intense static analysis be it Russian or not. Also keep in mind that GitHub itself has been subject to a mining attack whereby a pretend-NodeJS instance was available and executed which would perform crypto mining leveraging GitHub servers, so... kinda shady the whole thing whoever does it. But this library is developed in C# so static analysis is an option and I think there are several products that can do it. Static Analysis is your first line of defense, especially if you can establish "shady patterns" to look for. I am muchly more worried about situations where, say, the repo is on Russian/Chinese servers and with Internet-related laws that are questionable at least, if not downright awful. Static analysis is your friend, mate, use it! 1 Share this post Link to post