Google Launches OSS Rebuild to Expose Malicious Code in Widely Used Open-Source Packages

thehackernews.com

Google Launches OSS Rebuild to Expose Malicious Code in Widely Used Open-Source Packages

thehackernews.com

owen to Owen's Random Informational Online NewsletterEnglish · 2 months ago

Google’s OSS Rebuild checks package builds to stop supply chain attacks in Python, npm, and Rust.

cross-posted from: https://discuss.nibious.com/post/503

Google Launches OSS Rebuild to Expose Malicious Code in Widely Used Open-Source Packages

Google has announced the launch of a new initiative called OSS Rebuild to bolster the security of the open-source package ecosystems and prevent software supply chain attacks. “As supply chain attacks continue to target widely-used dependencies, OSS Rebuild gives security teams powerful data to avoid compromise without burden on upstream maintainers,” Matthew Suozzo, Google Open Source Security

You must log in or # to comment.

Chat