Y
Hacker News
new
|
ask
|
show
|
jobs
by
lanstin
885 days ago
Make the corporate proxy use an allow list only. Even then you fall prey to official PyPi hacked packages, but at least then the cryptominers or discord cred stealers can’t phone home.