Y
Hacker News
new
|
ask
|
show
|
jobs
by
E39M5S62
206 days ago
Same as anything else installed as a binary package - you trust the people packaging/providing the binary. If you don't, build it yourself. The source is publicly available.
1 comments
pabs3
206 days ago
Or you build it yourself and verify you got the same checksum.
https://reproducible-builds.org/
link
https://reproducible-builds.org/