Hacker News new | ask | show | jobs
by Helmut10001 132 days ago
It looks like using Chocolatey [1] saved me from this attack vector because maintainers hardcode SHA256 checksums (and choco doesn't use WinGuP at all).

[1]: https://chocolatey.org/
1 comments
Melatonic 132 days ago
Solid idea
link