Malicious packages in open-source repositories are surging
Posted: Fri Oct 11, 2024 1:10 am
The number of malicious packages found in the open-source ecosystem has dramatically grown in the past year, according to a new report from Sonatype.
The cybersecurity firm found that the number of malicious packages intentionally uploaded into open-source repositories has jumped by more than 150% compared to last year. Open-source software, a transparent development process where almost anyone can contribute to the code and components, is the bedrock of the digital age that can be found in most modern digital technologies.
[...]
Malicious packages in open-source repositories are surging
The cybersecurity firm found that the number of malicious packages intentionally uploaded into open-source repositories has jumped by more than 150% compared to last year. Open-source software, a transparent development process where almost anyone can contribute to the code and components, is the bedrock of the digital age that can be found in most modern digital technologies.
[...]
Malicious packages in open-source repositories are surging