|
|
|
|
|
|
by ForHackernews
2052 days ago
|
|
|
If necessary, it seems like it'd be easy for any of these package registries to ~~blackmail~~ encourage big companies into donating infrastructure. "If you don't support us, we might accidentally forget to audit our packages and feed malware into your build pipelines. It'd truly be a shame..." |
|
|