civodul pushed a commit to branch master
in repository maintenance.
commit 000ec620d37d242f7d16f3da2df91290e7d6b3fb
Author: Ludovic Courtès <[email protected]>
AuthorDate: Fri Jun 3 12:00:26 2022 +0200
programming-2022: Cite actual full-source bootstrap.
* doc/programming-2022/supply-chain.skb (Bootstrappable Builds):
Full-source bootstrap is now a reality.
---
doc/programming-2022/supply-chain.skb | 5 +++--
1 file changed, 3 insertions(+), 2 deletions(-)
diff --git a/doc/programming-2022/supply-chain.skb
b/doc/programming-2022/supply-chain.skb
index cfd5cab..09d92ea 100644
--- a/doc/programming-2022/supply-chain.skb
+++ b/doc/programming-2022/supply-chain.skb
@@ -502,8 +502,9 @@ at the root of the Guix package graph, well below what had
been achieved
so far ,(ref :bib '(janneke2020:bootstrap courant2022:ocamlboot)).
While many considered it unrealistic a few years earlier, the initial
goal of building ,(emph [everything]) from source, starting from a small
-core and incrementally building more complex pieces of software, is now
-within reach ,(ref :bib 'janneke2021:full-source-bootstrap). This has
+program of a few hundred bytes and incrementally building more complex pieces
of software became
+a reality in May 2022 ,(ref :bib '(janneke2021:full-source-bootstrap
+janneke2022:full-source-bootstrap)). This has
the potential to thwart an entire class of software supply chain attacks
that has been known but left unaddressed for forty years.])
