The year-long rash of supply chain attacks against open source is getting worse

Comments