Charlie Bedard

How to serve open source software maintainers without annoying them

Blog entry written by Dr. Munawar Hafiz, CEO of OpenRefactory Inc. This is a long and winding story with a set of lessons in the end. There is a TL;DR in the end for the restless, but the others are encouraged to follow along. OpenRefactory is in conversations with the alpha-omega project of OpenSSF on an ambitious project …

How to serve open source software maintainers without annoying them Read More »

iCR detects the latest PyPI repository poisoning attempt

**Image courtesy of Cyber Kendra) Open source libraries lay the foundations for modern applications. Polluting the libraries opens up opportunities to create security backdoors at a massive scale. There have been several recent incidents to pollute open source repositories. Here is a story from last week. On May 2022, a Reddit user posted that he …

iCR detects the latest PyPI repository poisoning attempt Read More »