All articles tagged with #supply chain security
A critical security vulnerability in the '@react-native-community/cli' npm package, affecting millions of developers, allowed remote attackers to execute arbitrary OS commands via the Metro development server. The flaw, tracked as CVE-2025-11953 with a CVSS score of 9.8, has been patched in version 20.0.0, highlighting the importance of security scanning in the software supply chain.
The US and Japan have established a framework to enhance cooperation in securing the supply of critical minerals and rare earths through joint investments, project development, regulatory streamlining, and international collaboration, aiming to strengthen their supply chains and support advanced technologies.
The US and Australia have established a framework to enhance cooperation and investment in securing the supply of critical minerals and rare earths vital for technology and defense industries, including joint project identification, financing, permitting reforms, and establishing a rapid response group to address supply vulnerabilities.