The Open Source Security Foundation today launched its Malicious Packages Repository, an open-source system for collecting and publishing cross-ecosystem reports of malicious packages. Claimed to be the first open-source system of its type, the repository was created in response to the rising number of attacks that include malicious open-source packages.
Source: SiliconANGLE