[bisq-network/bisq] Document how to build bisq without gradle. (#4730)
Bertrand Jacquin
notifications at github.com
Sat Feb 27 03:23:37 CET 2021
Outside of this, while version of each individual dependencies are specified in `build.gradle`, none of dependencies packages checksum are stored in bisq git repo, making the overall build vulnerable to supply chain attack.
See https://medium.com/@alex.birsan/dependency-confusion-4a5d60fec610 for a bit of literature around it.
--
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/bisq-network/bisq/issues/4730#issuecomment-786987803
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.bisq.network/pipermail/bisq-github/attachments/20210226/c7e3f970/attachment-0001.htm>
More information about the bisq-github
mailing list