
Microsoft’s lax policies in PowerShell Gallery provoke supply chain attacks
Microsoft's product PowerShell Gallery contains vulnerabilities that enable supply chain attacks, spoofing and typosquatting attacks. The vulnerabilities arose from the product's lax naming policy for code repository. PowerShell Gallery constitutes a hugely popular code hosting platform. The pla... Read more