Supply Chain Checked by Vezraa
Supply Chain Attack
Malicious code introduced through third-party dependencies or compromised packages.
Supply chain attacks target the software supply chain — injecting malware into legitimate packages, typosquatting popular packages, or compromising maintainer accounts. AI coding tools can hallucinate fake package names that attackers then register as real malware.