CSOonline

Malicious open-source software packages have exploded in 2024

The open-source development ecosystem has experienced a significant rise in malicious software components, putting enterprises on high alert for software supply chain attacks. Malware is infiltrating ...
InfoQ

Going Live: The Role of Development and Operations in Preparing and Deploying Software Packages

A monthly overview of things you need to know as an architect or aspiring architect. Ramya Krishnamoorthy shares a detailed case study on rewriting Momento's high-performance data platform from Kotlin ...
Science Daily

AI threats in software development revealed

In a package hallucination attack, an unsuspecting LLM user would be recommended the package in their generated code, and trusting the LLM, would download the adversary-1created malicious package, ...