Trump’s campaign donation website used open-source code sloppily, risking ridicule and worse