Y
Hacker News
new
|
ask
|
show
|
jobs
by
dlcarrier
481 days ago
I just download it from the repository. That's not am option on iOS, which is one of many anti-features.
1 comments
aqueueaqueue
481 days ago
If the threat vector is the code owner is lying that their app is the same code as the repo, even downloading artefacts from that same report is risky. Even the code itself should be manually read and verified.
link