Information securityfromInfoWorld1 week agoSAP npm package attack highlights risks in developer tools and CI/CD pipelinesAttackers view developer workstations as critical access points, targeting them to infiltrate software supply chains.