A sophisticated hacker group, TeamPCP, is actively poisoning open-source code at an unprecedented scale, targeting platforms like GitHub. This coordinated campaign represents a significant threat to software supply chains, potentially compromising numerous projects and their users. Developers must be vigilant against these attacks which aim to inject malicious code into widely used libraries and frameworks.
Opening Kapyn…