• Aux@lemmy.world
    link
    fedilink
    arrow-up
    8
    ·
    1 year ago

    No one is really doing anything. Repos have been poisoned multiple times over the decades, even original source code repos of big projects have been poisoned. If you don't check the end binary on your system yourself, you're at risk.