Typical security issues in C++: why the GC isn't your enemy
Was
cryptobitmann at gmail.com
Fri Apr 28 10:37:07 UTC 2023
On Thursday, 15 December 2022 at 14:36:18 UTC, H. S. Teoh wrote:
> On Thu, Dec 15, 2022 at 09:41:08AM +0000, areYouSureAboutThat
> via Digitalmars-d wrote:
>> [...]
> [...]
>> [...]
>
> +1, I have always been skeptical about the contemporary trend
> of using fancy package managers with hairball external
> dependencies that make your builds dependent on some opaque
> remote server somewhere out there on the 'Net that you have no
> control over. Some time ago somebody also posted another
> article about how easy it is to conduct MITM attacks on these
> external package repositories to insert a malicious package /
> substitute a legitimate package with a malicious version.
>
> [...]
agree
More information about the Digitalmars-d
mailing list