Content
@
0 reply
0 recast
0 reaction
David Furlong
@df
What are the best tools for hardening OSS against supply chain attacks?
7 replies
1 recast
12 reactions
raz
@raz
I think the only real defense technically is to slow down updates, create test environments, and avoid pushing anything to the main branch within a two-week or longer time window.
0 reply
0 recast
1 reaction