Open Source maintainers and developers have been warned about the continued wave of attacks aimed at project maintainers similar to those recently targeting the Linux xz data compression library, XZ Utils [linuxsecurity.com].
Open Source maintainers and developers have been warned about the continued wave of attacks aimed at project maintainers similar to those recently targeting the Linux xz data compression library, XZ Utils [linuxsecurity.com].
here’s the link to the source information of that article. Read it in full. https://openjsf.org/blog/openssf-openjs-alert-social-engineering-takeovers