|
|
|
|
|
|
by akoboldfrying
162 days ago
|
|
|
I think this is a sound approach, but I do see one legitimate reason to keep using a third-party CI service: reducing the chance of a software supply chain attack by building in a hardened environment that has (presumably) had attention from security people. I'd say the importance of this is increasing. |
|
|