---
title: "The year of the supply chain attacks"
description: "I think I'm starting to understand my role as a platform developer in 2026."
date: 2026-04-02
published: true
tags:
  - ping
template: ping
---


I think I'm starting to understand my role as a platform developer in 2026.

* least priveleged access
* default deny + explicit allow
* understand your blast radius
* **GREASED** creds rotate process
* PIN EVERYTHING
* keep packages up to date
* but not too up to date, use dependency cooldowns