In this Help Net Security video, Ax Sharma, Senior Security Researcher at Sonatype, talks about the risks posed by malicious open source packages.
Malicious packages can harm systems in many different ways. They can cause a simple proof of concept hacking, data exfiltration, passive cryptomining and outright sabotage.