OpenWRT had a vulnerability in their build system. OpenWRT is great but imagine if it had reproducible builds like Guix, Nix, or Debian? Trusting signatures from a centralized build system just doesn't cut it anymore.
https://www.phoronix.com/news/OpenWrt-Compromised-ASU-Builds

Comments

Posting Rules

  • Be respectful to others
  • No spam or self-promotion
  • Stay on topic
  • Follow Bluesky's terms of service