Minimum Release Age is an Underrated Supply Chain Defense

daniakash.com

Minimum Release Age is an Underrated Supply Chain Defense

daniakash.com

codeinabox@programming.dev to

Security@programming.devEnglish · 19 days ago

Minimum Release Age is an Underrated Supply Chain Defense | Dani Akash

daniakash.com

A 7-day package delay would have blocked installs in most short-lived malicious publish attacks from the last 8 years

You must log in or # to comment.

Chat

Security@programming.dev

security@programming.dev

Create a post

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: [email protected]

A community for discussion about cybersecurity, hacking, cybersecurity news, exploits, bounties etc.

Rules :

All instance-wide rules apply.
Keep it totally legal.
Remember the human, be civil.
Be helpful, don’t be rude.

Icon base by Delapouite under CC BY 3.0 with modifications to add a gradient

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

6 users / day
272 users / week
296 users / month
296 users / 6 months
1 local subscriber
2.06K subscribers
61 Posts
21 Comments
Modlog

mods:
Vacant@programming.dev