Sustainable Rails is out of print (DHH)sustainable-rails.com7 points·by thepill·8 miesięcy temu·0 comments
thepill·8 miesięcy temu·discussHow do you test your projects if there are any infected/affected dependencies used? As i understand it could also be a dependency of a dependency ... that could be affected?
thepill·9 miesięcy temu·discussI recently learned about https://garagehq.deuxfleurs.fr/ but i have no expirience using it
thepill·10 miesięcy temu·discussI understand the problem mentioned with mcp servers but this kind of attack could happen to any external dependency (like a smtp package) i guess
thepill·10 miesięcy temu·discussbun is also working on it: https://github.com/oven-sh/bun/issues/22679
thepill·11 miesięcy temu·discussThe same thing that happend to grafana?https://grafana.com/blog/2025/05/15/grafana-security-update-...