Techly NewsGet the app

Get the latest tech news

Google Launches OSS Rebuild


Google has announced OSS Rebuild, a new project designed to detect supply chain attacks in open source software by independently reproducing and verifying package builds across major repositories. The initiative, unveiled by the company's Open Source Security Team, targets PyPI (Python), npm (JavaSc...

Google has announced OSS Rebuild, a new project designed to detect supply chain attacks in open source software by independently reproducing and verifying package builds across major repositories. Google cited recent real-world attacks including solana/webjs (2024), tj-actions/changed-files (2025), and xz-utils (2024) as examples of threats the system addresses. The project builds on Google's hosted infrastructure model previously used for OSS Fuzz memory issue detection.

Get the Android app

Or read this on Slashdot

« Tesla is the least-trusted car brand in America, survey finds
Win for chemical industry as EPA shutters scientific research office | Companies feared rules and lawsuits based on Office of Research and Development assessments. »