Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Are they just running shell scripts off the public web for deploying federal gov sites that are targeted by nation states?

From the docker file:

  curl -o- https://raw.githubusercontent.com/nvm-sh/nvm/v0.39.3/install.sh


A vein pops out in my forehead every time I see a shell script echoed from the internet into a prompt.


It's much better when it's done importing javascript snippets ...


Based on the heavy downvoting of my comment, I guess it's considered a good practice by folks now. shrug


It could be pulling these resources over http ;)

Edit: Whoops sorry, morning fog




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: