Security advisory: malicious crate rustdecimal
@be why does every new forge have to learn anew about typosquatting?
@meena @be Or indeed learn that "you can't trust the people from the Internet" ...Running any form of repository of data from contributors is beset with problems ...
@yojimbo @be verily.
For people who care about, support, or build Free, Libre, and Open Source Software (FLOSS).