Hacker News new | past | comments | ask | show | jobs | submit login

It depends, attacks via build pipelines can be devastating.



Yep.

Unfortunately it’s not clear cut that we don’t have to worry about devDependencies vulnerabilities.




Consider applying for YC's Summer 2025 batch! Applications are open till May 13

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: