> in the default vendor-provided state grants arbitrary remote code execution ability to the developer (via unattended auto update which is on by default)
I find this a curious, borderline alarmist framing of the automatic update mechanism. Many pieces of software have automatic updates. What you say is no less true for common programs like Firefox or Google Chrome.
Obviously you have to consider your threat model, but the number of people willing to trust a specific Syncthing binary they're downloading from the internet, but who are wary of trusting published updates going forward, must be relatively small.
(I am a Linux user and use the OS packages rather than automatic updates, but automatic updates are quite common outside of Linux distro packages)
I find this a curious, borderline alarmist framing of the automatic update mechanism. Many pieces of software have automatic updates. What you say is no less true for common programs like Firefox or Google Chrome.
Obviously you have to consider your threat model, but the number of people willing to trust a specific Syncthing binary they're downloading from the internet, but who are wary of trusting published updates going forward, must be relatively small.
(I am a Linux user and use the OS packages rather than automatic updates, but automatic updates are quite common outside of Linux distro packages)