MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
pytorch
Search

[$] PyTorch and the PyPI supply chain

Thursday January 12, 2023. 12:17 AM , from LWN.net
The PyTorch
compromise that happened right at the end of 2022 was rather ugly, but
its impact was not widespread—seemingly, at least. The incident does
highlight some of
the perils of relying on an external 'supply chain' for the components that
are used to build one's software. It also would appear to be another
case of 'security researchers' run amok, though perhaps that part of the story
is only meant to cover the tracks—or ass—of the perpetrator.
https://lwn.net/Articles/919588/
News copyright owned by their original publishers | Copyright © 2004 - 2024 Zicos / 440Network
Current Date
Mar, Fri 29 - 11:14 CET