AdvancedVocabulary#security#devops#developer-tools

Dependency Confusion Vocabulary

Build fluency in the vocabulary of preventing a malicious package from impersonating an internal one.

0 / 5 completed
1 / 5
At standup, a dev mentions an attack where a malicious public package is published under the exact same name as a company's internal private package, tricking a misconfigured build into installing the malicious public version instead. What is this attack called?