Replies: 1 comment 1 reply
-
|
Are you asking how Deno does specifically or how developers do in general? |
Beta Was this translation helpful? Give feedback.
1 reply
-
|
Deno specifically |
Beta Was this translation helpful? Give feedback.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
Uh oh!
There was an error while loading. Please reload this page.
-
Hi, with all the third party explicit and implicit dependencies you pull in, how do you ensure your supply chain is secure and you don't pull in malicious code?
I'm asking, because I see a lot of really interesting Rust projects pulling in a lot of implicit and explicit crates and I was wondering whether there is an economic approach to reduce the risk, that something along the lines of a libxz, node-icp or color.js is caused by one of the dependencies.
I know it's an emotionally charged topic, but I am genuinely curious about ways to you solve this.
Thank you
Beta Was this translation helpful? Give feedback.
All reactions