Supply Chain Attacks Spotted in GitHub Actions, Gravity Forms, npm
Researchers have identified serious security vulnerabilities, including backdoors and malicious code, in popular development tools, which pose a significant risk to software supply chains. These findings highlight the ongoing threats within the software development ecosystem.