David A. Wheeler 6868fe6f93 Note that pinning is a way to mitigate dependency confusion (#1012) ... One reason to pin dependencies is that it's one way to counter dependency confusion attacks; mention that. Pinning dependencies is definitely not the *only* way, and it's not even clear it's the best way, but it's a legitimate reason to pin dependencies in applications. Signed-off-by: David A. Wheeler <dwheeler@dwheeler.com>		2021-09-14 11:07:02 -07:00
..
checks	Note that pinning is a way to mitigate dependency confusion (#1012)	2021-09-14 11:07:02 -07:00
checks.md	Note that pinning is a way to mitigate dependency confusion (#1012)	2021-09-14 11:07:02 -07:00