An IQT R&D initiative on software supply chain security.
Dan Geer, Bentz Tozer, and John Speed Meyers published an article entitled “Counting Broken Links: A Quant’s View of Software Supply Chain Security” in USENIX ;login:. You can read the paper or browse the dataset.
John Speed Meyers and Bentz Tozer published an IQT blog post on a tool that scans the Python Package Index for typosquatters. Check out the post or the tool.
John Speed Meyers and Bentz Tozer published an IQT blog post on Python typosquatting attack strategies. Check out the post.
