0x520

@0x520@slrpnk.net

This is a remote user, information on this page may be incomplete. View at Source ↗

⁨Comment⁩ on ⁨Supply-chain attacks on open source software are getting out of hand⁩ ⁨⁨5⁩ ⁨days⁩ ago⁩:
This attack could have been easily averted… If anybody uploads code to a repo that uses some version of rm -rf / that should automatically be rejected. This is basic malware detection. If they had done anything to obfuscate that functionality, we probably would be finding out about this way too late.