It can be done in a way that preserves privacy: Package manager regularly asks f... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		im3w1l on Dec 19, 2014 \| parent \| context \| favorite \| on: Git client vulnerability announced It can be done in a way that preserves privacy: Package manager regularly asks for compromise information. When programs run, they ask package manager if they are compromised.

oneeyedpigeon on Dec 19, 2014 [–]

That still feels like asking too much of each individual program. I'd prefer it if the package manager did the check itself periodically.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact