15Kas
Dealing with changed hashes when building open-source packages in-house
My plan is to start building the open-source packages from their sources and use organization’s security resources like SAST tools to detect security issues in them.
The good thing that I see coming out of this effort is better security, e…