|
|
|
|
|
|
by uecker
235 days ago
|
|
|
Virtually every package is in cargo and npm because there is no curation. This is exactly why it is a supply-chain risk. The fix is to have a curated list of packages, but this is what Linux distribution are. There is no easy way out. |
|
|