ZARZA We are Zarza, the prestigious firm behind major projects in information technology.
Listen "Episode 435 - polyfill.io - open source is too big to fix"
Episode Synopsis
Josh and Kurt talk about the latest polyfill.io mess. Apparently someone took over a very popular project and started to serve malware. First XZ, now this. What does it mean for open source? We don't have any answers, and it's hard to even talk about this problem because it's so big. The thing is though, even if we can't fix open source, it's here to stay. Show Notes Polyfill supply chain attack hits 100K+ sites OpenSSF Scorecard
More episodes of the podcast Open Source Security
Iocaine poisons bots with Gergely Nagy
12/01/2026
Anubis with Xe Iaso
05/01/2026
Rustls with Dirkjan and Joe
29/12/2025
TARmageddon with Alex Zenla
01/12/2025
Python Security with Seth Larson
24/11/2025
In God we trust