New favorite tool 😍

  • DaPorkchop_@lemmy.ml
    link
    fedilink
    arrow-up
    14
    arrow-down
    2
    ·
    6 months ago

    No, it was compiled by the team which maintains my distro’s package repository, and cryptographically verified to have come from them by my package manager. That’s a lot different than downloading some random executables I pulled from a website I’d never heard of before and immediately running them as root.

    • Miaou@jlai.lu
      link
      fedilink
      arrow-up
      2
      ·
      6 months ago

      Everything you’ve ever needed was available in your distro’s package manager?

    • BatmanAoD
      link
      fedilink
      arrow-up
      3
      arrow-down
      5
      ·
      6 months ago

      Yes, I agree package managers are much safer than curl-bash. But do you really only install from your platform’s package manager, and only from its central, vetted repo? Including, say, your browser? Moreover, even if you personally only install pre-vetted software, it’s reasonable for new software to be distributed via a standalone binary or install script prior to being added to the package manager for every platform.