Y
Hacker News
new
|
ask
|
show
|
jobs
by
woodruffw
1152 days ago
This has nothing to do with trusting packages; it’s about delegating publishing authority to a service like GitHub Actions.
1 comments
verdverm
1151 days ago
How do you know that what the action is doing is trustworthy?
link