packages   6037

« earlier    

Attacks against GPG signed APT repositories - Packagecloud Blog

It is a common misconception that simply signing your packages and repository metadata with GPG is enough to create a secure APT repository. This is false. Many of the attacks outlined in the paper and this blog post are effective against GPG-signed APT repositories. GPG signing Debian packages themselves does nothing, as explained below. The easiest way to prevent the attacks covered below is to always serve your APT repository over TLS; no exceptions.


This is excellent research. My faith in GPG sigs on packages is well shaken.
apt  security  debian  packaging  gpg  pgp  packages  dpkg  apt-get  ops 
7 days ago by jm
Lerna
A tool for managing JavaScript projects with multiple packages.
javascript  git  npm  packages  monorepo 
10 days ago by bales
Information on Building R Packagses
This NOTE includes a bunch of URLs and other summary information
r  packages  addins  templates  usethis  package  down  pkgdown  from notes
15 days ago by bikesandbooks
Module require debugger / Observable
A tool for inspecting modules from NPM packages and reporting the possible ways to correctly import that package.
programming  javascript  dynamic  import  npm  packages  require  entry  point  modules 
17 days ago by acemarke
GitHub - sindresorhus/awesome-nodejs: Delightful Node.js packages and resources
You might also like awesome-npm. Please read the contribution guidelines before contributing. Check out my blog and say "hi" on Twitter.
Archive  index  nodejs  packages 
17 days ago by leninworld

« earlier    

related tags

2018  academic-writing  addins  alfred  android  angular  api  apple.stackexchange  apt-get  apt  arch  archive  article  available  badge  bestpractices  blog  book  brew  building  caret  centos  channels  checksum  cli  code  configuration  convention  core  course  coverage  ctan  dart  data  datascience  dataset  debian  debugging  dependencies  dev  development  diagram  distributed  distribution  docker  documentation  dotnet  down  downloads  dpkg  dynamic  education  eggs  elm  emacs  email  entry  error  events  example  excel  external  files  fix  followup  for_friends  free_software  generator  ggplot2  git  github  githubpages  globally  go  golang  gpg  graphical_models  graphics  guide  hadoop  homebrew  howto  hpc  import  important  importing  independent  index  install  installation  installed  java  javascript  js  json  language  laravel  latex  launchpad  libraries  library  linux  list  lodash  logging  machinelearning  makecode  manager  media  medium  metrics  microbit  microcontrollers  microsoft  ml  mode  modular  modules  monorepo  multiple  naming  native  network_data_analysis  network_inference  networking  networks  nixos  node  nodejs  notavailable  notifications  npm  ops  package  packaging  packrat  pacman  pgp  php  pip  pkgdown  pocket  point  powerpoint  ppa  programming  public  publication  publish  publishing  purrr  python  python2.7  r-markdown  r-project  r  rdf  reasonml  reference  regex  regression  repo  reproducibility  reproducible-research  require  research  research_methods  ropensci  rstats  rstudio  same  scraping  search  security  sha1  shell  shiny  shinydashboard  simulation  social_networks  software  spark  ssh  stackexchange  strings  structure  sublime  sublimetext  tables  teaching  template  templates  tensor_regression  terminal  test  testing  tex  tidyverse  time_series  tinycore  tools  tutorial  tutorials  ubuntu.xenial  ubuntu  update  usethis  visnetwork  visualization  vpn  web  wheels  wiki  workflow  writing  xml  yarn  yum 

Copy this bookmark:



description:


tags: