Y
Hacker News
new
|
ask
|
show
|
jobs
by
sadops
721 days ago
Except package repositories have maintainers, who tend to be trustworthy parties. Compare the number of supply chain attacks Debian's apt repos have compared to, say, npm.