Skip to main content
← Back to board (業界新聞)

Ruby Fights Supply-Chain Attacks With Filter Offering 'Cooldown' Before…

by Slashdot :verified: Slashdot :verified:@mastodon.cloud ·
Posted in 業界新聞

Ruby Fights Supply-Chain Attacks With Filter Offering ‘Cooldown’ Before Installing New Packages https://developers.slashdot.org/story/26/06/08/0511207/ruby-fights-supply-chain-attacks-with-filter-offering-cooldown-before-installing-new-packages?utm_source=rss1.0mainlinkanon

Preview image for Ruby Fights Supply-Chain Attacks With Filter Offering 'Cooldown' Before Installing New Packages - Slashdot

Ruby Fights Supply-Chain Attacks With Filter Offering 'Cooldown' Before Installing New Packages - Slashdot

Most supply-chain attacks using Ruby's package hosting site "exploit a narrow window," according to a new blog post form Ruby core maintainer Hiroshi Shibata. So its packaging-managing Bundler tool now offers a filter that blocks new version until it's been public "for at least N days. Releases t...

developers.slashdot.org
View original 0 Likes 0 Boosts

Comments (0)

No comments yet.