|
|
|
|
|
|
by swang
3081 days ago
|
|
|
maybe everyone should wait for the full report before jumping to conclusions? from what it appears, the reason someone else was allowed to register the same package name was because their database didn't pull in the entries for that package. an error? yes. an issue? yes. but it is not a repeat of the same incidence of left-pad. i'm not going to pass judgement until i read the full report. i think at the very least, whatever mechanism they were using to copy/backup the database seems to have an issue with deleting entries and needs to be addressed |
|
|