Welcome to the 24th edition of Coding Jag brought to you by LambdaTest!
It’s always fascinating to see the level of trust we put in while downloading language dependencies for our project. We are essentially trusting its publisher to run code on your machine.
However, this blind trust can be exploited by malicious actors as they can freely upload code packages to public code repositories, which is not guaranteed to be malware-free.
This edition covers the story of a novel supply chain attack and how Apple, Microsoft, and various other companies were hacked.
Stay up to date in the testing world!