Read the original article: Library Dependencies and the Open Source Supply Chain Nightmare
It’s a bigger problem than is immediately apparent, and has the potential for hacks as big as Equifax and as widespread as SolarWinds.
Read the original article: Library Dependencies and the Open Source Supply Chain Nightmare