This is amazing:
bleepingcomputer.com/news/secu

tl;dr:
1. a developer of a bunch of popular packages publishes new, intentionally broken versions of them as he doesn't want to support for-profit companies with his free work;
2. NPM *reverts* the packages to older versions against developer's wishes;
3. GitHub *blocks* the developer for acting "irresponsibly".

That story again: developer blocked by for making changes to his own code.

This is why and @forgefriends are so important!

@rysiek @forgefriends

Wait, is that Marak the gamer gator who got caught trying to build a bomb?

Jesus Christ

Follow

@celesteh @forgefriends yes. And now he is becoming the poster child for media claiming "open source is so insecure".

Everything about this is fscked.

· · Web · 0 · 0 · 1
Sign in to participate in the conversation
Mastodon for Tech Folks

This Mastodon instance is for people interested in technology. Discussions aren't limited to technology, because tech folks shouldn't be limited to technology either!