←back to thread

Open Source is one person

(opensourcesecurity.io)
433 points LawnGnome | 1 comments | 28 Aug 25 01:54 UTC | HN request time: 0s | source
Show context
andersmurphy ◴[28 Aug 25 10:06 UTC] No.45050365[source]
I find it more concerning that the DoD uses node.

I might be wrong but npm etc feels like a very large attack surface.

replies(3): >>45050940 #>>45051144 #>>45053066 #
lantry ◴[28 Aug 25 12:05 UTC] No.45051144[source]
The DoD is a huge organization, so I'd guess they use almost everything.
replies(2): >>45051301 #>>45057920 #
1. tracker1 ◴[28 Aug 25 22:50 UTC] No.45057920[source]
There's a reason it's the largest budget item outside entitlements. There's a lot of money flowing into DoD (and Military Industrial Complex vendors).