Y
Hacker News
new
|
ask
|
show
|
jobs
by
tardedmeme
10 days ago
Every package manager, by design, allows arbitrary code execution after the update completes. It is the entire purpose of a package manager. There is no point installing code that does not run.