Sign up to save your podcasts
Or
Share Episode 435 - polyfill.io - open source is too big to fix
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Episode 435 - polyfill.io - open source is too big to fix
Josh and Kurt talk about the latest polyfill.io mess. Apparently someone took over a very popular project and started to serve malware. First XZ, now this. What does it mean for open source? We don't have any answers, and it's hard to even talk about this problem because it's so big. The thing is though, even if we can't fix open source, it's here to stay.
Show Notes- Polyfill supply chain attack hits 100K+ sites
- OpenSSF Scorecard
View all episodes
By Josh Bressers
4.7
4040 ratings
Josh and Kurt talk about the latest polyfill.io mess. Apparently someone took over a very popular project and started to serve malware. First XZ, now this. What does it mean for open source? We don't have any answers, and it's hard to even talk about this problem because it's so big. The thing is though, even if we can't fix open source, it's here to stay.
Show Notes- Polyfill supply chain attack hits 100K+ sites
- OpenSSF Scorecard
More shows like Open Source Security
View all
Security Now (Audio)
1,998 Listeners
Risky Business
369 Listeners
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
639 Listeners
The Changelog: Software Development, Open Source
288 Listeners
Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec
369 Listeners
LINUX Unplugged
267 Listeners
Hacked
183 Listeners
CyberWire Daily
1,017 Listeners
Late Night Linux
164 Listeners
Smashing Security
320 Listeners
Darknet Diaries
7,958 Listeners
Hacking Humans
315 Listeners
Defense in Depth
73 Listeners
2.5 Admins
98 Listeners
Risky Bulletin
43 Listeners