Matthew Ramsden @matthewramsden - 1y
https://www.evasec.io/blog/eva-discovered-supply-chain-vulnerabities-in-cocoapods https://image.nostr.build/e00a7ec657fe3a625b4643871a29d08cd985d663346a93015caa5a63c44019ab.jpg
That’s an interesting comp, 2 things come to mind when trying to think of differences: - no active widespread attack happened that I’m aware of for this (tbd) - Cocoapods is open source software
~3 million apps theoretically
