Zerush@lemmy.ml to Open Source@lemmy.ml · 8 months agoOver 100,000 Infected Repos Found on GitHubapiiro.comexternal-linkmessage-square23fedilinkarrow-up10arrow-down10
arrow-up10arrow-down1external-linkOver 100,000 Infected Repos Found on GitHubapiiro.comZerush@lemmy.ml to Open Source@lemmy.ml · 8 months agomessage-square23fedilink
minus-squareerAck@discuss.tchncs.delinkfedilinkarrow-up0·8 months agoIf you installed the original legit package it can’t be updated with such fake one (without uninstalling and installing the bad one) as the signatures won’t match. If you initially install the bad package then yes of course.
If you installed the original legit package it can’t be updated with such fake one (without uninstalling and installing the bad one) as the signatures won’t match. If you initially install the bad package then yes of course.