192
Over 100,000 Infected Repos Found on GitHub
(apiiro.com)
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
this post was submitted on 29 Feb 2024
192 points (98.0% liked)
Open Source
31181 readers
114 users here now
All about open source! Feel free to ask questions, and share news, and interesting stuff!
Useful Links
- Open Source Initiative
- Free Software Foundation
- Electronic Frontier Foundation
- Software Freedom Conservancy
- It's FOSS
- Android FOSS Apps Megathread
Rules
- Posts must be relevant to the open source ideology
- No NSFW content
- No hate speech, bigotry, etc
Related Communities
- !libre_culture@lemmy.ml
- !libre_software@lemmy.ml
- !libre_hardware@lemmy.ml
- !linux@lemmy.ml
- !technology@lemmy.ml
Community icon from opensource.org, but we are not affiliated with them.
founded 5 years ago
MODERATORS
Friends dont let friends install software that isn't signed.
Use apt.
Lol apt
Or to frame it differently, use a package manager and not appimages etc.
AppImages actually do have (optional) support for signatures.
They have no update feature afaik, how does this work? What verified this signature, the user?
Its a subcommand of the AppImage. The developer adds the signature to the AppImage and the user verifies it after download with the subcommand.
Thats nice, didnt even know there was an interface for managing appimages?
I mean, yeah but not everything is available over apt. I try to use it whenever I can though