Supply Chain Attacks via Open-Source Repositories Spike
A report from Sonatype revealed that supply chain attacks on open-source public repositories have increased up to 650% year-over-year. The security firm has mentioned that the significant increase in supply-chain attacks has been mainly caused by the exploitation of flaws in popular open-source ecosystems. It is always recommended to strictly monitor the open-source projects used in the production environment for any anomalies.