Source: thenewstack.io
PHP Supply Chain Attack Shows Open Source’s Virtues and VicesCategory: Software, Microsoft, github, gitlab
Well, that was no fun. PHP, by the Web Technology Surveys count, by the way, is used by almost 80% of all websites.
Fortunately, as Popov told Bleeping Computer: “The first commit was found a couple hours after it was made, as part of routine post-commit code review.
It will do this by empowering developers to securely sign software artifacts such as release files, container images, and binaries.
The sigstore code and operation tooling that will be used to make this work is still being developed by the sigstore community.
Fortunately, as Popov told Bleeping Computer: “The first commit was found a couple hours after it was made, as part of routine post-commit code review.
It will do this by empowering developers to securely sign software artifacts such as release files, container images, and binaries.
The sigstore code and operation tooling that will be used to make this work is still being developed by the sigstore community.
Related Articles
Community Partners
DevOps Careers