just because something is packaged does not mean it’s usable. YMMV but this is h... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

rantwasp on April 6, 2021 | parent | context | favorite | on: Apache Mesos to be moved to Attic

just because something is packaged does not mean it’s usable. YMMV but this is how security horror stories start. Someone ran a container they had no idea where it came from, happily used a helm chart. Most of the times it’s not even malicious - it’s outdated software because “it just works”

marcinzm on April 6, 2021 [–]

In my experience all the common helm charts and docker images are regularly updated. If you don't update your installation of them then you also wouldn't update a docker compose or LXD.

rantwasp on April 9, 2021 | [–]

that’s a big statement. what constitutes “common” helm charts?

Consider applying for YC's Spring batch! Applications are open till Feb 11.
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact