NHacker Next
  • new
  • past
  • show
  • ask
  • show
  • jobs
  • submit
Config Files That Run Code: Supply Chain Security Blindspot (safedep.io)
32 points by signa11 5 hours ago | 2 comments
embedding-shape 1 hours ago [-]
Is this why Windows Defender is prompting me 2-3 times a day to submit my codex/config.toml to Microsoft for "malware analysis"? I've said no every time so far, since my first thought is "What could even be hidden there?" when I see the dialog yet again, I'm guessing Microsoft would love to see how people use their competitors' products though.
lstodd 1 hours ago [-]
You might as well click yes, since it's all been uploaded as telemetry anyways.
51 minutes ago [-]
sieabahlpark 2 hours ago [-]
[dead]
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact
Rendered at 14:17:39 GMT+0000 (Coordinated Universal Time) with Vercel.