44
Two different attackers poisoned popular open source tools - and showed us the future of supply chain compromise (www.theregister.com)
submitted 9 hours ago by cm0002@lemmings.world to c/opensource@programming.dev
2 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[-] Oisteink@lemmy.world 11 points 8 hours ago

Dev-ops where compromised.

Where they believe pulling in new releases without vetting into your environment is good practice..?

We dont even patch windows without vetting…. Why do you do that in your dev env?????

this post was submitted on 11 Apr 2026
44 points (100.0% liked)

Opensource

5919 readers
126 users here now

A community for discussion about open source software! Ask questions, share knowledge, share news, or post interesting stuff related to it!

CreditsIcon base by Lorc under CC BY 3.0 with modifications to add a gradient


founded 2 years ago
MODERATORS
pylapp@programming.dev