Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
dperfect
on April 29, 2016
|
parent
|
context
|
favorite
| on:
GitLab Major Security Update for CVE-2016-4340
From what I understand, the source often contains other files/scripts that are invoked by the Dockerfile, so that would be one example of potentially missing visibility.
michaelmior
on April 29, 2016
[–]
True, but even if the build is automated, you won't necessarily have access to the full source.
Consider applying for YC's W25 batch! Applications are open till Nov 12.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
