Unfortunately, many developers, especially, low-end devs working for out-sourcing vendors in a sweat-shop environment, don’t know or care about software supply chain attacks.
I know how hard it is to get code to work — much less be secure and performant.
But we’ve got to find some way to prevent supply chain poisoning — and it has to start with upping devs’ awareness and skills.
https://arstechnica.com/?p=2013233
Alex Neihaus /
npub1ut…2h5at
2024-03-29 14:55:23
Author Public Key
npub1utrn3duez00n4wc6uhrh8er82rqc6vzzmhy76h6dtrn8wlg2exjqd2h5atPublished at
2024-03-29 14:55:23Event JSON
{
"id": "d9fc37362addce540586e8c46a5247273c6daef0d82a53b2b858ce6d15cce98e",
"pubkey": "e2c738b79913df3abb1ae5c773e46750c18d3042ddc9ed5f4d58e6777d0ac9a4",
"created_at": 1711720523,
"kind": 1,
"tags": [
[
"proxy",
"https://air11.social/users/alex/statuses/112179316248316127",
"activitypub"
]
],
"content": "Unfortunately, many developers, especially, low-end devs working for out-sourcing vendors in a sweat-shop environment, don’t know or care about software supply chain attacks. \n\nI know how hard it is to get code to work — much less be secure and performant. \n\nBut we’ve got to find some way to prevent supply chain poisoning — and it has to start with upping devs’ awareness and skills.\n\nhttps://arstechnica.com/?p=2013233",
"sig": "189e361ebc990c6cc34818480090865a9376ee9dd3898897af9691994959cd86473b8abb8196474ad5a210fefd19a0ddb2537eb56cb8ce0196d268f11e810fa3"
}