Y
Hacker News
new
|
ask
|
show
|
jobs
by
Joker_vD
343 days ago
Yeah, there is a rather strong "downloading and executing arbitrary code from the Internet may lead to execution of arbitrary code" kind of vibe there.
3 comments
captn3m0
343 days ago
Starting on the other side of the airtight hatchway:
https://devblogs.microsoft.com/oldnewthing/20221004-00/?p=10...
link
nijave
343 days ago
Seems the normal mitigations apply i.e. validate with hash or save a local copy. Validate new versions before adopting
link
steveBK123
343 days ago
And yet you just described the behavior of many mid-size company "DevOps" departments.
link