Matthew Lyon on Nostr: stop referring to vulnerabilities stemming from software using publicly-available ...
stop referring to vulnerabilities stemming from software using publicly-available package repositories cataloguing what amounts to a vast effort of free labor as “supply chain attacks”
providing free labor does not make one a supplier — a “supply chain” implies some form of economics where EVERY OTHER MODEL of a supply chain involves money changing hands
these attacks are against a communal resource, not a supply chain
providing free labor does not make one a supplier — a “supply chain” implies some form of economics where EVERY OTHER MODEL of a supply chain involves money changing hands
these attacks are against a communal resource, not a supply chain