Y
Hacker News
new
|
ask
|
show
|
jobs
by
xiaosong001
32 days ago
A 7-day cooldown feels like a low-effort band-aid. The real fix is probably reproducible builds + signed attestations, but most teams won't pay that tax until they've already been burned.