They continue to be a growing threat — and they could already be in your applications.
Mend’s 360° malicious package protection has already found thousands of malicious packages in existing code base. This is great news for threat actors, who are always quick to exploit new material. But it is bad news for everyone else; as the importance of the software supply chain increases, so have the number of attacks launched at them.
Mend.io’s latest Software Supply Chain Malware Special Report discusses this and more.