| ▲ | TZubiri 3 hours ago | |
> Every language that depends on third party libraries, like js and python, is getting massively infected with supply chain worms > Only couple of languages not affected are those that don't have a culture of downloading third party code, like C and C++ > Ex js and python developer publishes a 'library' > Library is vibe coded > Published on github amidst GitHub being hit by supply chain attacks, had their source code leaked. The timing is terrible for starters, and I don't trust the vibe coded code at all. Imagine a pandemic and the cities are on fire, and you arrive to a rural town asking to kiss people. | ||
| ▲ | redlewel 24 minutes ago | parent [-] | |
Thanks for this comment, I was about to bookmark the repo for later you saved me the time. | ||