Comment by ivewonyoung
5 months ago
Are they just running shell scripts off the public web for deploying federal gov sites that are targeted by nation states?
From the docker file:
curl -o- https://raw.githubusercontent.com/nvm-sh/nvm/v0.39.3/install.sh
A vein pops out in my forehead every time I see a shell script echoed from the internet into a prompt.
It's much better when it's done importing javascript snippets ...
Based on the heavy downvoting of my comment, I guess it's considered a good practice by folks now. shrug
It could be pulling these resources over http ;)
Edit: Whoops sorry, morning fog