Zerush@lemmy.ml to

Open Source@lemmy.ml · 8 months ago

Over 100,000 Infected Repos Found on GitHub

164

Over 100,000 Infected Repos Found on GitHub

Zerush@lemmy.ml to

Open Source@lemmy.ml · 8 months ago

The Apiiro research team has detected a repo confusion campaign that has evolved and expanded, impacting over 100k GitHub repos with malicious code.

Chat

delirious_owl@discuss.online
link
fedilink
arrow-up
16
arrow-down
1·
8 months ago
Friends dont let friends install software that isn’t signed.

Use apt.
- Pantherina@feddit.de
  link
  fedilink
  arrow-up
  7·
  edit-2
  8 months ago
  Lol apt
  
  Or to frame it differently, use a package manager and not appimages etc.
  - delirious_owl@discuss.online
    link
    fedilink
    arrow-up
    2·
    8 months ago
    AppImages actually do have (optional) support for signatures.
    - Pantherina@feddit.de
      link
      fedilink
      arrow-up
      1·
      8 months ago
      They have no update feature afaik, how does this work? What verified this signature, the user?

Open Source@lemmy.ml

opensource@lemmy.ml

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !opensource@lemmy.ml

All about open source! Feel free to ask questions, and share news, and interesting stuff!

Useful Links

Rules

Posts must be relevant to the open source ideology
No NSFW content
No hate speech, bigotry, etc

Related Communities

Community icon from opensource.org, but we are not affiliated with them.

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

284 users / day
2.43K users / week
4.7K users / month
12.2K users / 6 months
1 local subscriber
31.1K subscribers
1.76K Posts
28.7K Comments
Modlog