Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
einrealist
on July 29, 2014
|
parent
|
context
|
favorite
| on:
How to take over the computer of a Maven Central u...
It is not the fault of Sonatype. We should not trust Central right away. If I worry about malicious artifacts from Central, I must host my own repository and manage artifacts myself. And that way, I can just map other repositories I trust more.
lmm
on July 29, 2014
[–]
Trusting Central > Trusting everyone on the network path between you and central.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
