I do this quite often, actually. I have my NixOS system config officially stored... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		thelopa on April 13, 2022 \| parent \| context \| favorite \| on: Git security vulnerability announced I do this quite often, actually. I have my NixOS system config officially stored in /etc/nixos/ and owned by root. I have a clone that lives in my home directory for WIP changes, but builds always run out of the official copy. Sometimes it’s convenient to quickly run some read-only commands directly in the official copy

db48x on April 13, 2022 [–]

Ultimately you own that repository so just set it as safe in your config. Similarly if you are looking at a coworker’s repository then you can probably trust them. It’s only when you start sharing a computer with people that you don’t really know that you have a problem.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact