A recent dispute over maintainer access to the popular Go library fsnotify briefly sparked supply chain security fears across the open-source community. Boasting over 10.7k stars on GitHub, the project provides cross-platform filesystem notifications for Windows, Linux, and macOS. It serves as a foundational dependency for roughly 321k projects. When active contributors were suddenly removed […]
The post Popular Go Library fsnotify Sparks Supply Chain Security Concerns appeared first on Cyber Security News.