The cybersecurity world was recently rocked by one of the most sophisticated software supply chain attacks: the XZ attack. This incident impressively demonstrates how vulnerable even trusted open source projects can be. The attack in detail: An attacker named “Jia Tan” built up trust in the open source community over a period of two years...