Dossier
SBOMs
Coverage of SBOMs in the Nexus archive.
- Two different attackers poisoned popular open source tools - and showed us the future of supply chain compromise
Two supply chain attacks in March compromised popular open source tools with malware, enabling attackers to steal secrets from tens of thousands of organizations. The incidents highlight vulnerabilities in software supply chains and the urgent need for SBOMs to improve transparency.