undefined | Better HN

0 pointsxghryro1y ago0 comments

I suppose you think the maintainers shouldn’t have scrutinized those files? Please tell me it’s a joke.

0 comments

The person who added the malicious blobs and signed the compromized archives was literally a maintainer of the project.

account421y ago

Ok, go ahead and scrutinize those files without looking at the injection code that was never in the repo? Can you find anything malicious? Probably not - it looks like random garbage which is what it was claimed to be.

j / k navigate · click thread line to collapse

0 pointsxghryro1y ago0 comments

I suppose you think the maintainers shouldn’t have scrutinized those files? Please tell me it’s a joke.

0 comments

ab5tract1y ago

The person who added the malicious blobs and signed the compromized archives was literally a maintainer of the project.

account421y ago

j / k navigate · click thread line to collapse