A recent Supply chain attack involving a malicious pull request (PR) has highlighted serious weaknesses in the software development lifecycle, especially in open-source projects. The incident targeted the repository Egonex-AI/Understand-Anything, where the payload was carefully embedded in astro.config.mjs. This file is particularly important in the Astro framework because it is executed as a Node.js module for every build and development operation. As a result, the malicious code could run automatically, without any user interaction. The malicious PR was masked with an innocuous title and description...