Y
Hacker News
new
|
ask
|
show
|
jobs
by
CuriousCosmic
2793 days ago
Well unless you or any software you use pulls packages from secondary sources like unverified git repos, npm, or pypi.