fsnotify Maintainer Dispute Sparks Supply Chain Concerns
Summary
This article covers a dispute over fsnotify maintainer access and its implications for software supply chain risk. It notes that there is no evidence of a compromised release yet but highlights governance and visibility issues in open-source dependencies that can affect downstream users and downstream security tooling.