Researchers Report Supply Chain Vulnerability in Packagist PHP Repository

Researchers have revealed information regarding a high-severity security weakness that has since been corrected in Packagist, a PHP software package repository, and which might have been used to launch attacks against the software supply chain.

According to a report provided with The Hacker News by SonarSource researcher Thomas Chauchefoin, “this vulnerability permits taking control of Packagist.” Composer, the PHP package manager, uses Packagist to identify and download software dependencies that developers include into their projects. Read More…

Researchers Report Supply Chain Vulnerability in Packagist PHP Repository

Solutions

Services

Services

Knowledge

Solutions

Industries

Contact

Invinsense

About

INDIA | Ahmedabad

SRI LANKA

KUWAIT

USA | New York

UNITED KINGDOM | London

Address

Researchers Report Supply Chain Vulnerability in Packagist PHP Repository

04-Oct-22

Solutions

Services

Services

Knowledge

Solutions

Industries

Contact

Invinsense

About

INDIA | Ahmedabad

SRI LANKA

KUWAIT

USA | New York

UNITED KINGDOM | London

Address