It's all about securing the software supply chain. Mark Russinovich had a keynot... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		prosim on April 16, 2020 \| parent \| context \| favorite \| on: GitHub has completed its acquisition of NPM It's all about securing the software supply chain. Mark Russinovich had a keynote on the general topic at RSA 2020, especially the section on package managers from 0:29 onwards: https://www.rsaconference.com/industry-topics/presentation/c...

metreo on April 16, 2020 [–]

Ironic really given that Microsoft has the most notoriously insecure products I can think of.

Can anyone point to a technology company that has a larger attack surface or a more fundamentally insecure product?

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact