←back to thread

Open Source is one person

(opensourcesecurity.io)

433 points LawnGnome | 2 comments | 28 Aug 25 01:54 UTC | HN request time: 0.573s | source

Show context

andersmurphy ◴[28 Aug 25 10:06 UTC] No.45050365[source]▶

>>45047460 (OP) #

I find it more concerning that the DoD uses node.

I might be wrong but npm etc feels like a very large attack surface.

replies(3): >>45050940 #>>45051144 #>>45053066 #

lantry ◴[28 Aug 25 12:05 UTC] No.45051144[source]▶

The DoD is a huge organization, so I'd guess they use almost everything.

replies(2): >>45051301 #>>45057920 #

kube-system ◴[28 Aug 25 12:24 UTC] No.45051301[source]▶

> The DoD is a huge organization

That's an understatement if there ever was one.

https://en.wikipedia.org/wiki/List_of_largest_employers

replies(2): >>45053540 #>>45053697 #

1. chamomeal ◴[28 Aug 25 15:37 UTC] No.45053540[source]▶

Woah that’s insane, I didn’t realize it was THAT big. And that’s not even counting the zillions of contractors and consultants. I live in the DC area and I know a ton of people who work for places that contract for the DOD, and only like 2 people who actually work there

replies(1): >>45054028 #

2. spott ◴[28 Aug 25 16:20 UTC] No.45054028[source]▶

>>45053540 (TP) #

That is including all us military personnel, which puts it into perspective a bit.