ah yes, another supply chain attack. i'm sure the maintainers will do some hand-wringing and promise to do better, while nothing actually changes.
https://www.reddit.com/user/CircumspectCapybara
replying in thread
are we just accepting that open source software is gonna be a constant security risk because no one
0
0
0
no replies yet