Techly NewsGet the app

Get the latest tech news

Stacklok donates its Minder supply chain security project to the OpenSSF


Stacklok, the open source software supply chain company founded by Kubernetes co-creator Craig McLuckie and Sigstore creator Luke Hinds, is donating

A hacking group affiliated with North Korea staged fake job interviews with developers who were all working in the Web 3.0/crypto space and had them install an NPM package as part of their programming tests. Minder is meant to be a system that can apply controls across the entire application life cycle, starting at the IDE and with the developer’s local package manager, all the way to the production environment. McLuckie pointed out that Google, his old employer, has also taken some interest in this project and is supporting it by, among other things, helping Stacklok drive some integrations with services like the open source vulnerability database.

Get the Android app

Or read this on TechCrunch

Read more on:

Photo of openssf

openssf

Photo of Stacklok

Stacklok

Related news:

News photo

OpenSSF warns of Open Source Social Engineering Threats

« Generative AI could cause 10 billion iPhones’ worth of e-waste per year by 2030
How Apple Intelligence changes the way you use Siri on your iPhone »