@karlpoe that's also not the fault of Snyk (although they could and should do better). All similar tools produce the same amount of noise and burden. Maaaybe socket.dev can improve on that, but generally - this is a commodity and nobody cares about actual security in the supply chain.
=> More informations about this toot | View the thread | More toots from dominykas@fosstodon.org
=> View karlpoe@fosstodon.org profile
text/geminiThis content has been proxied by September (3851b).