Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
well_ackshually
24 days ago
|
parent
|
context
|
favorite
| on:
No one owes you supply-chain security
No. Because the only reason you then get hit by this new version with malware is either that you're not pinning your versions (and that's irresponsible), or you're blindly bumping (and that's irresponsible.)
The software is provided as is.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
The software is provided as is.