CIRCLE WITH A DOT

Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you have been placed in read-only mode.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

nunomaduro@mastodon.social

@nunomaduro@mastodon.social

Topics

N

dear package registries (npm, composer, etc), i am begging you
Watching Ignoring Scheduled Pinned Locked Moved Uncategorized
1

1

0 Votes

1 Posts

8 Views

N

dear package registries (npm, composer, etc), i am begging yourequire 2FA before someone can tag a release RIGHT NOWthis would immediately stop a huge amount of the open source supply chain attacks we keep seeing
N

introducing laravel moat
Watching Ignoring Scheduled Pinned Locked Moved Uncategorized
2

0 Votes

2 Posts

4 Views

N

moat checks the things that are easy to miss 2FA, branch protection, signed commits, secret scanning, Dependabot, workflow permissions, pinned actions, webhooks, and moreavailable now: https://github.com/laravel/moat
N

i think twitter is probably where i get the least engagement right now.. which is funny because it's the one i enjoy the most..
Watching Ignoring Scheduled Pinned Locked Moved Uncategorized
4

1

0 Votes

4 Posts

9 Views

D

@nunomaduro I'm glad you're here!I love your pint + phpstan projects, and use them daily for my federated TikTok project Loops (think Mastodon, but like TikTok powered by Laravel, Vue, Tailwind and React-Native)https://github.com/joinloops/loops-server

CIRCLE WITH A DOT

nunomaduro@mastodon.social

Topics

dear package registries (npm, composer, etc), i am begging you

introducing laravel moat

i think twitter is probably where i get the least engagement right now.. which is funny because it's the one i enjoy the most..