|
|
|
|
|
|
by kylecazar
216 days ago
|
|
|
There are companies that continuously rebuild popular libraries from source in an isolated environment and serve it to you -- which would eliminate certain types of distribution attack (Chainguard, for example). I don't know if anyone's doing it at the individual commit level as a business. |
|
|