A report sponsored by DevOps company JFrog suggests that executives over-estimate the extent to which developers within their organization defend against vulnerable or malicious packages in the software supply chain.
If you're shocked, you might just be executive material
