For years, security teams focused on defending against malicious code injected into open source projects and package repositories. At Sonatype, we’ve tracked espionage campaigns, shadow downloads, and targeted malware designed to compromise development environments.
*** This is a Security Bloggers Network syndicated blog from 2024 Sonatype Blog authored by Aaron Linskens. Read the original post at: https://www.sonatype.com/blog/ai-malware-and-the-rise-of-software-development-infiltration
