Zerush@lemmy.ml to Open Source@lemmy.ml · 10 months agoOver 100,000 Infected Repos Found on GitHubapiiro.comexternal-linkmessage-square26fedilinkarrow-up1208arrow-down14
arrow-up1204arrow-down1external-linkOver 100,000 Infected Repos Found on GitHubapiiro.comZerush@lemmy.ml to Open Source@lemmy.ml · 10 months agomessage-square26fedilink
minus-squareerAck@discuss.tchncs.delinkfedilinkarrow-up2·10 months agoIf you installed the original legit package it can’t be updated with such fake one (without uninstalling and installing the bad one) as the signatures won’t match. If you initially install the bad package then yes of course.
If you installed the original legit package it can’t be updated with such fake one (without uninstalling and installing the bad one) as the signatures won’t match. If you initially install the bad package then yes of course.