The big companies can do that. But then there is also the question of -- how man... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		markus_zhang on April 1, 2024 \| parent \| context \| favorite \| on: What we know about the xz Utils backdoor that almo... The big companies can do that. But then there is also the question of -- how many of these critical OS libraries are there in the wilderness?

lenerdenator on April 1, 2024 [–]

I feel a census coming on.

There needs to be a reckoning of who is doing what where on this sort of thing. After this whole fiasco you'll probably see more contracts wanting to know who's working on these things, and that will, in turn, have people auditing their software's packages.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact