SoylentNews is people
SoylentNews
Submission Preview
No link to story available
What Can We Learn About the Backdooring of `Xz`/`liblzma`, Using OpenSSF Security Scorecards and Dep
████ # This file was generated bot-o-matically! Edit at your own risk. ████
What can we learn about the backdooring of `xz`/`liblzma`, using OpenSSF Security Scorecards and dependency-management-data? [www.jvt.me]:
Looking at how the recent CVE-2024-3094 vulnerability could provide insight into other cases of risk in dependencies and their lack of code review.
In a museum in Havana, there are two skulls of Christopher Columbus,
"one when he was a boy and one when he was a man."
-- Mark Twain
