top | item 47194081 (no title) dchest | 1 day ago How is _your_ supply chain a concern of this open source developer? discuss order hn newest ZeroAurora|1 day ago _My_ supply chain is not a big deal, lol. But this is HTTPX. A network library that has a considerable number of users.When I say _considerable_, I'm essentially saying _nearly every_ big tech. The one I can tell for sure is OpenAI (not a fan of them though).Remember xz attack? dchest|1 day ago Why can nearly every big tech take care of their supply chain? :)Clearly, the maintainer doesn't want to do this job anymore, and it's not a requirement when releasing your code to also do stuff unrelated to programming.
ZeroAurora|1 day ago _My_ supply chain is not a big deal, lol. But this is HTTPX. A network library that has a considerable number of users.When I say _considerable_, I'm essentially saying _nearly every_ big tech. The one I can tell for sure is OpenAI (not a fan of them though).Remember xz attack? dchest|1 day ago Why can nearly every big tech take care of their supply chain? :)Clearly, the maintainer doesn't want to do this job anymore, and it's not a requirement when releasing your code to also do stuff unrelated to programming.
dchest|1 day ago Why can nearly every big tech take care of their supply chain? :)Clearly, the maintainer doesn't want to do this job anymore, and it's not a requirement when releasing your code to also do stuff unrelated to programming.
ZeroAurora|1 day ago
When I say _considerable_, I'm essentially saying _nearly every_ big tech. The one I can tell for sure is OpenAI (not a fan of them though).
Remember xz attack?
dchest|1 day ago
Clearly, the maintainer doesn't want to do this job anymore, and it's not a requirement when releasing your code to also do stuff unrelated to programming.