Hacker News new | ask | show | jobs
by mdp2021 1607 days ago
Have you cross checked the signatures?
1 comments
wjd2030 1607 days ago
Nope, and it was totally my fault, though at the time I tried to find a way to report the app and I didnt see it (though I could've missed it)
link
mdp2021 1607 days ago
> totally my fault

Not totally: the big question remains of how a tampered-with package can reach a prominent repository.

link