[1]https://thehackernews.com/2022/05/heres-new-tool-that-scans-for-malicious.htm l The Open Source Security Foundation (OpenSSF) has announced the initial prototype release of a new tool that's capable of carrying out dynamic analysis of all packages uploaded to popular open source repositories. Called the [2]Package Analysis project, the initiative aims to secure open-source packages by detecting and alerting users to any malicious behavior with the goal of bolstering the security of the software supply chain and increasing trust in open-source software. IFRAME: [3]1-0-38;22903;