Y
Hacker News
new
|
ask
|
show
|
jobs
by
panny
211 days ago
Maven central also requires package signing. You're not stealing my signing key. It's on a yubikey. Game over, you can't publish malware in my name using my key.