Y
Hacker News
new
|
ask
|
show
|
jobs
by
tedd4u
37 days ago
Enforce a “seasoning” period, for example don’t let any pull pull versions newer that 30 days. Perhaps with an exception for versions that address known CVEs.