Ars Technica

AI-generated code could be a disaster for the software supply chain. Here’s why.

AI-generated computer code is rife with references to non-existent third-party libraries, creating a golden opportunity for supply-chain attacks that poison legitimate programs with malicious packages ...
CSOonline

UK NCSC releases new training packages to help businesses manage supply chain risks

The UK National Cyber Security Centre (NCSC) has released two new e-learning packages to help business manage security risks across their supply chains. The packages have been designed to accompany ...