Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
noosphr
1 day ago
|
parent
|
context
|
favorite
| on:
The fate of "small" open source
Copied text does not inject bitcoin mining malware three months after I paste it.
KPGv2
1 day ago
[–]
Neither does a dependency you don't update, though, which is isomorphic to copied code you never update.
reply
chii
17 hours ago
|
parent
[–]
somehow, in the js/npm world, dependencies are updated willy nilly, which is the cause of a lot of that ecosystem's headaches.
reply
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
