Reproducible Builds @reproducible_builds@fosstodon.org
set of software development practices that create an independently-verifiable path from source code to the binary code used by computers.
Account monitored by @raboof
π Check out what has been going on during July 2020 within the world of @ReproBuildsπ https://reproducible-builds.org/reports/2020-07/ @opensuse #archlinux @debian @conservancy
diffoscope 155 released! π https://diffoscope.org/news/diffoscope-155-released/
diffoscope 154 released π https://diffoscope.org/news/diffoscope-154-released/
diffoscope 153 released π https://diffoscope.org/news/diffoscope-153-released/ cc @lolamby
"Please make the obfuscated nmap_service.exe file reproducible" https://fosstodon.org/about bug filed by @lolamby) https://bugs.debian.org/964369 cc @nmap
π π Read what's been going on during June in the world of @ReproBuilds π π https://reproducible-builds.org/reports/2020-06/ https://fosstodon.org/about https://fosstodon.org/about https://mastodon.technology/about @ubuntupodcast
Nice short (~16m) talk on build system security β trusting trust attacks, reproducible builds & bootstrappable builds.
https://isdebianreproducibleyet.com/ βββββββββββββββ 94.5%
π« @debian bug #963600: "please make the teapot.txt files reproducible" https://bugs.debian.org/963600 (via @lolamby)
An interesting issue where non-deterministic filesystem ordering resulted in a different README file being installed (found by in @debian)
diffoscope 148 π ββ released https://diffoscope.org/news/diffoscope-148-released/
https://mastodon.technology/about @ReproBuilds #diffoscope
diffoscope 147 releasedπ https://diffoscope.org/news/diffoscope-147-released/ https://mastodon.technology/about @ReproBuilds #diffoscope
A real world example of an open source supply chain attack: the Octopus Scanner malware
https://securitylab.github.com/research/octopus-scanner-malware-open-source-supply-chain
π Check out what has been going on during May in the world of @ReproBuilds π https://reproducible-builds.org/reports/2020-05/ https://fosstodon.org/about https://fosstodon.org/about https://mastodon.technology/about @LineageAndroid
https://isdebianreproducibleyet.com/ βββββββββββββββΒ 94.7%
Hello Fediverse!
This account will post announcements from the Reproducible Builds project (https://reproducible-builds.org) as found on the birdsite, but will also boost Mastodon content related to the topic.
Happy to meet you all!
Check out what has been going on during April in Reproducible Builds. https://reproducible-builds.org/reports/2020-04/ @opensuse @conservancy @debian
Supply-chain attack hits RubyGems repository with 725 malicious packages https://arstechnica.com/information-technology/2020/04/725-bitcoin-stealing-apps-snuck-into-ruby-repository/
π¦π¦π¦π¦π¦π£π¦π¦
π¦π£π¦π¦π¦π¦π¦π¦
π¦π¦π¦π¦π¦π¦π¦π¦
π¦π¦π¦π¦π£π£π¦π¦
π¦π£π¦π¦π¦π¦π£π¦
π¦π¦π¦π¦π¦π¦π¦π¦
π¦π£π¦π¦π¦π¦π¦π¦
π Check out what has been going on during March in the world of @ReproBuilds! π https://reproducible-builds.org/reports/2020-03/ @opensuse @debian
Check out what's been happening during the last month in the world of @reproducible_builds this month http://reproducible-builds.org/reports/2019-11/ cc @opensuse @debian
set of software development practices that create an independently-verifiable path from source code to the binary code used by computers.
Account monitored by @raboof
