daniel:// stenberg:// on Nostr: "If the attacker instead can just sneak the code directly into a release archive then ...
"If the attacker instead can just sneak the code directly into a release archive then it won’t appear in git, it won’t get tested and it won’t get easily noticed by team members!"
... like... xz.
Published at
2024-03-30 08:40:36Event JSON
{
"id": "0eb6e06021224ad5de8bc25b72f1eb1dc3ed82177e9b48d7b89fcc0845b8d72a",
"pubkey": "783f5e8607f5b88c53c6c6a334445e79376235013841bc40db7c59eeb7b9e94b",
"created_at": 1711788036,
"kind": 1,
"tags": [
[
"e",
"a99efad074970618948674ec74c0b3605cb7689b72772b399469aae57d33c9d2",
"wss://relay.mostr.pub",
"reply"
],
[
"proxy",
"https://mastodon.social/users/bagder/statuses/112183740779492620",
"activitypub"
]
],
"content": "\"If the attacker instead can just sneak the code directly into a release archive then it won’t appear in git, it won’t get tested and it won’t get easily noticed by team members!\"\n\n... like... xz.",
"sig": "92b6c90caa9890a4d838be96df278fa52a0743ec717cfae7df27093dc0e5124e41bf98c4cfb270b4cbe8c6339ebd655c757d95675ffb4d6742dc76dc0156c796"
}