Chainguard finds malware in 52,000 open source packages

Chainguard analyzed 52,000 open source packages and found widespread malware, urging developers to verify dependencies instead of blindly downloading code. The findings highlight significant security risks in the open source ecosystem, with malicious packages often mimicking legitimate ones to infiltrate software supply chains.