Or something similar to this: https://www.theverge.com/2022/1/9/22874949/developer-corrupts-open-source-libraries-projects-affected
Sebastian On Wed, 26 Jan 2022 12:35:59 -0800, Tom Brennan <t...@tombrennansoftware.com> wrote: >Those are things we don't like to talk about :) And even less talked >about: What's to stop a trusted ISV or even IBM from being hacked or >having a rogue employee that does the same? > >On 1/26/2022 11:41 AM, Gibney, Dave wrote: >> If I was a long term bad actor, or perhaps a nation/state, I might consider >> evaluating open source for useful/popular components. Then, contribute to >> their development, spread, and usefulness, while inserting subtle >> exploitable defects. >> > >---------------------------------------------------------------------- >For IBM-MAIN subscribe / signoff / archive access instructions, >send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
