xz is not a "trusting trust" attack, it is a "your build tools are too complex... - Random - kbin.social

tomw, 1 month ago

xz is not a "trusting trust" attack, it is a "your build tools are too complex for you to understand all the input and output" attack.

And guess what: that's very relevant to web development...

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

Image

Image alternative text

tomw, 1 month ago

People worry about backdoored compilers and undetectable exploits and then go and install 100MB of node modules that we assume someone out there is probably checking idk

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

Federation

Status:

Instances:

/m/random

Threads (58559)

Microblog (4128559)

Thread

tomw

@tomw@mastodon.social

Added: 1 month ago
Online: -
Boosts: 0

Magazine

Random

@random@kbin.social

"Random" is the place where all the content from the Fediverse that couldn't be classified into any other magazine ends up.

Created: 1 year ago
Owner: ernest
Subscribers: 4353
Online: -

Threads 58559
Comments 47883
Posts 4128559
Replies 5302348
Moderators 1
Moderation log 10

Moderators

ernest

Active people

Related posts

🎲 Do you like Python's little CLIs? For example:...

Show more

1 month ago to python

Being #creative is simply...

Show more

5 months ago to creative

#random #meme #Denver #eye #surveillance

Show more

8 months ago to Meme

During my social media break, I started taking random walks around the city....

Show more

1 year ago to Florida

Related threads

Troy Polamalu Says Pat McAfee Was "Too Excited On Sideline," (Youtube, 12:12)

Show more

11 months ago to NFL

Shattered Pixel Dungeon

Show more

10 months ago to opensourcegames

Road leading through an overgrown magical forest [20x30]

Show more

11 months ago to Battlemaps

What is !196, and how is it different from @random@kbin.social?

Show more

10 months ago to 196

Support Us