Information securityfromInfoWorld4 hours agoSAP npm package attack highlights risks in developer tools and CI/CD pipelinesAttackers view developer workstations as critical access points, targeting them to infiltrate software supply chains.