Re: Orphaned CodoPods are found in Apple software

On 2024-07-07, Andrew <andrew@spam.net> wrote:

Jolly Roger wrote on 6 Jul 2024 21:28:04 GMT :
>

The holes are so big they can't be avoided but why did Apple not
find it?

 
It's not Apple's job to police third-party package mangers. You
desperately want to blame Apple for something that is very clearly
not Apple's fault, because: troll.

>
Jolly Roger wrote on 7 Jul 2024 02:06:58 GMT :
>

The fact is that I'm beginning to think you didn't lie, Chris.

 
Not a fact. You lose.]

>
Holy shit! You didn't lie!

...yet you and your little troll buddies (namely badgolferman) continue
to lie trying to blame Apple for third-party vulnerabilities.

Here are some FACTS you desperately want us to ignore:

Open source vulnerabilities remain unpatched for decades
<https://www.itweb.co.za/article/open-source-vulnerabilities-remain-unpatched-for-decades/wbrpO7gPwGdMDLZn>
---
A new report reveals an enormous number of identified open source
vulnerabilities remain unpatched for 10 years and longer, often because
organisations have no idea what open source code they are using.
.
.
.
With software developers routinely taking code from open source
repositories to embed in their company's products to speed up the
development process, saving time and money, manually tracking
components, their versions and their vulnerabilities is way beyond the
capabilities of most organisations.

The report recommends all organisations invest in an automated solution
for identifying and patching known vulnerabilities. "You can't patch
software if you don't know you are using it," the authors point out.
---

--
E-mail sent to this address may be devoured by my ravenous SPAM filter.
I often ignore posts from Google. Use a real news client instead.

JR