Unverified code is the next national security threat | CyberScoop<\/title> <meta name=\"description\" content=\"Congress and federal agencies can take some simple steps to better protect open-source software, writes Chainguard CEO Dan Lorenc.\"> <link rel=\"canonical\" href=\"https:\/\/cyberscoop.com\/unverified-code-is-the-next-national-security-threat-op-ed\/\"> <meta property=\"og:locale\" content=\"en_US\"> <meta property=\"og:type\" content=\"article\"> <meta property=\"og:title\" content=\"Unverified code is the next national security threat\"> <meta property=\"og:description\" content=\"Congress and federal agencies can take some simple steps to better protect open-source software, writes Chainguard CEO Dan Lorenc.\"> <meta property=\"og:url\" content=\"https:\/\/cyberscoop.com\/unverified-code-is-the-next-national-security-threat-op-ed\/\"> <meta property=\"og:site_name\" content=\"CyberScoop\"> <meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/cyberscoop\/\"> <meta property=\"article:published_time\" content=\"2025-06-09T11:00:00+00:00\"> <meta property=\"og:image\" content=\"https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2025\/06\/unverified-code-is-the-next-national-security-threat-2.jpg\"> <meta property=\"og:image:width\" content=\"1920\"> <meta property=\"og:image:height\" content=\"810\"> <meta property=\"og:image:type\" content=\"image\/jpeg\"> <meta name=\"author\" content=\"Greg Otto\"> <meta name=\"twitter:card\" content=\"summary_large_image\"> <meta name=\"twitter:creator\" content=\"@gregotto\"> <meta name=\"twitter:site\" content=\"@CyberScoopNews\">  <link rel=\"dns-prefetch\" href=\"\/\/securepubads.g.doubleclick.net\">\n<link rel=\"dns-prefetch\" href=\"\/\/use.typekit.net\">\n<link rel=\"alternate\" type=\"application\/rss+xml\" title=\"CyberScoop \u00bb Feed\" href=\"https:\/\/cyberscoop.com\/feed\/\">\n<link rel=\"alternate\" type=\"application\/rss+xml\" title=\"CyberScoop \u00bb Comments Feed\" href=\"https:\/\/cyberscoop.com\/comments\/feed\/\"> <link rel=\"stylesheet\" id=\"all-css-2\" href=\"https:\/\/cyberscoop.com\/wp-includes\/css\/dist\/block-library\/style.min.css?m=1746040294g\" type=\"text\/css\" media=\"all\"> <link rel=\"stylesheet\" id=\"all-css-6\" href=\"https:\/\/cyberscoop.com\/wp-content\/mu-plugins\/search\/elasticpress\/dist\/css\/related-posts-block-styles.min.css?m=1748637685g\" type=\"text\/css\" media=\"all\"> <link rel=\"stylesheet\" id=\"all-css-8\" href=\"https:\/\/cyberscoop.com\/wp-content\/themes\/scoopnewsgroup\/dist\/css\/frontend.css?m=1748220166g\" type=\"text\/css\" media=\"all\">\n<link rel=\"stylesheet\" id=\"typekit-css\" href=\"https:\/\/use.typekit.net\/itk2qbh.css?ver=13897d660a0ac2c9c7d1\" media=\"all\"> <link rel=\"https:\/\/api.w.org\/\" href=\"https:\/\/cyberscoop.com\/wp-json\/\"><link rel=\"alternate\" title=\"JSON\" type=\"application\/json\" href=\"https:\/\/cyberscoop.com\/wp-json\/wp\/v2\/posts\/84798\"><link rel=\"EditURI\" type=\"application\/rsd+xml\" title=\"RSD\" href=\"https:\/\/cyberscoop.com\/xmlrpc.php?rsd\">\n<meta name=\"generator\" content=\"WordPress 6.8.1\">\n<link rel=\"shortlink\" href=\"https:\/\/cyberscoop.com\/?p=84798\">\n<link rel=\"alternate\" title=\"oEmbed (JSON)\" type=\"application\/json+oembed\" href=\"https:\/\/cyberscoop.com\/wp-json\/oembed\/1.0\/embed?url=https%3A%2F%2Fcyberscoop.com%2Funverified-code-is-the-next-national-security-threat-op-ed%2F\">\n<link rel=\"alternate\" title=\"oEmbed (XML)\" type=\"text\/xml+oembed\" href=\"https:\/\/cyberscoop.com\/wp-json\/oembed\/1.0\/embed?url=https%3A%2F%2Fcyberscoop.com%2Funverified-code-is-the-next-national-security-threat-op-ed%2F&format=xml\">   <link rel=\"icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=32\" sizes=\"32x32\">\n<link rel=\"icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=192\" sizes=\"192x192\">\n<link rel=\"apple-touch-icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=180\">\n<meta name=\"msapplication-TileImage\" content=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=270\"> <\/head><body class=\"wp-singular post-template-default single single-post postid-84798 single-format-standard wp-theme-scoopnewsgroup wp-child-theme-cyberscoop\" id=\"readabilityBody\"> <a href=\"https:\/\/cyberscoop.com\/unverified-code-is-the-next-national-security-threat-op-ed\/#main\" class=\"skip-to-content-link visually-hidden-focusable\">Skip to main content<\/a> <\/p>\n<div class=\"ad ad--top ad--top-desktop\">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p> <main id=\"main\" role=\"main\" tabindex=\"-1\"> <\/p>\n<div class=\"ad ad--top ad--top-mobile\">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<section id=\"stickybar\" class=\"stickybar stickybar--event js-stickybar\">\n<div class=\"stickybar__details\" readability=\"4.9180327868852\">\n<div class=\"stickybar__info js-sticky-bar-content\" readability=\"32\">\n<p>Voting is open for the 2025 CyberScoop 50 awards!<\/p>\n<\/div>\n<p> <a class=\"stickybar__link button button-tertiary\" href=\"https:\/\/cyberscoop.com\/cyberscoop50\/\">Click here!<\/a> <\/div>\n<p> <button class=\"stickybar__close js-stickybar-close\" aria-controls=\"stickybar\"> <svg class=\"icon icon--close\" width=\"21\" height=\"22\" viewBox=\"0 0 21 22\" fill=\"none\"><path d=\"m.822.518-.805.805L9.695 11 .017 20.678l.805.805 9.678-9.678 9.677 9.678.806-.805L11.305 11l9.678-9.677-.806-.805-9.677 9.677L.822.518Z\" fill=\"currentColor\" \/><\/svg> <span class=\"visually-hidden\">Close<\/span> <\/button> <\/section>\n<article class=\"single-article content\">\n<div class=\"single-article__container js-single-article-content\">\n<header class=\"single-article__header \" readability=\"24.531073446328\">\n<div class=\"single-article__header-content\" readability=\"32.947214076246\">\n<ul class=\"single-article__eyebrow\">\n<li class=\"single-article__category\"> <a class=\"single-article__category-link\" href=\"https:\/\/cyberscoop.com\/unverified-code-is-the-next-national-security-threat-op-ed\/\"> <span>Commentary<\/span> <\/a> <\/li>\n<\/ul>\n<p> Congress and federal agencies can take some simple steps to better protect open-source software. <\/p>\n<p>  <br \/>\n<audio id=\"audio-player\" src=\"https:\/\/wp-tts-cdn.api.scpnewsgrp.com\/cyberscoop\/84798\/english.openai.mp3\"><\/audio> <\/p>\n<div readability=\"11\">\n<div>\n<p>Listen to this article<\/p>\n<p>  <\/p>\n<p>0:00<\/p>\n<\/p><\/div>\n<p>  <\/p>\n<p> <span id=\"tts-tooltip\">Learn more.<\/span> <span> This feature uses an automated voice, which may result in occasional errors in pronunciation, tone, or sentiment. <\/span> <\/p>\n<\/div>\n<p>  <\/div>\n<div class=\"single-article__cover-wrap\">\n<figure class=\"single-article__cover\"> <img data-recalc-dims=\"1\" fetchpriority=\"high\" width=\"640\" height=\"270\" src=\"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2025\/06\/unverified-code-is-the-next-national-security-threat.jpg?resize=640%2C270&ssl=1\" class=\"single-article__cover-image wp-post-image\" alt decoding=\"async\" fetchpriority=\"high\" srcset=\"https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2025\/06\/unverified-code-is-the-next-national-security-threat-2.jpg 1920w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2025\/06\/unverified-code-is-the-next-national-security-threat-2.jpg?resize=300,127 300w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2025\/06\/unverified-code-is-the-next-national-security-threat-2.jpg?resize=768,324 768w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2025\/06\/unverified-code-is-the-next-national-security-threat-2.jpg?resize=1024,432 1024w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2025\/06\/unverified-code-is-the-next-national-security-threat-2.jpg?resize=1536,648 1536w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2025\/06\/unverified-code-is-the-next-national-security-threat-2.jpg?resize=600,253 600w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2025\/06\/unverified-code-is-the-next-national-security-threat-2.jpg?resize=1200,506 1200w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2025\/06\/unverified-code-is-the-next-national-security-threat-2.jpg?resize=1500,633 1500w\" sizes=\"(max-width: 1200px) 100vw, 1200px\"><figcaption> Getty Images <\/figcaption><\/figure>\n<\/p><\/div>\n<\/header>\n<div class=\"single-article__content\">\n<div class=\"single-article__content-inner has-drop-cap\"> <html readability=\"46.584324635457\"><body readability=\"95.888799355359\"><\/p>\n<p>American infrastructure is powered by open-source software and no one knows who wrote it. That\u2019s not hyperbole. It\u2019s a structural vulnerability. <\/p>\n<p>Every day, government agencies, contractors, and Fortune 500 companies deploy software built by anonymous developers and downloaded from public repositories into critical systems \u2014 sometimes with no scrutiny of who created it or whether it\u2019s been compromised. As nation-state cyber actors grow more sophisticated, and as the global dependency on open-source software deepens, this issue is no longer just a tech problem. It\u2019s a matter of national security.<\/p>\n<p><strong>Code is now a geopolitical attack surface<\/strong><\/p>\n<p>Open-source software is now a critical dependency in modern digital infrastructure \u2014 by som estimates, <a href=\"https:\/\/www.blackduck.com\/blog\/open-source-trends-ossra-report.html#:~:text=The%202025%20OSSRA%20report%20found,of%20third%2Dparty%20code.%E2%80%9D\">over 90%<\/a> of all modern applications include open-source components. It powers critical infrastructure, supports hospitals, underpins financial systems, and runs inside defense technologies. But it often enters systems with no verification of its provenance or maintainers. This creates a new class of security risks, rooted in anonymity, opacity, and untraceable trust.<\/p>\n<p>Recently, it was revealed that a popular Go library, easyjson, is <a href=\"https:\/\/www.blackduck.com\/blog\/open-source-trends-ossra-report.html#:~:text=The%202025%20OSSRA%20report%20found,of%20third%2Dparty%20code.%E2%80%9D\">maintained by a company<\/a> listed on the U.S. sanctions list for ties to Russian state interests. In October 2024, the Linux kernel made waves <a href=\"https:\/\/www.zdnet.com\/article\/why-remove-russian-maintainers-of-linux-kernel-heres-what-torvalds-says\/\">when leaders announced<\/a> that they removed several Russian Linux maintainers. And Huawei, a Chinese multinational telecommunications company, is <a href=\"https:\/\/k8s.devstats.cncf.io\/d\/9\/companies-table?orgId=1\">a top 15 contributor<\/a> to Kubernetes, which the Air Force runs in its fighter jets. These projects are not buried in dark web repositories \u2014 they are hiding in plain sight on GitHub and used in production systems globally.<\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p>One more example to bring this threat to life: Last year, a sophisticated backdoor was found in the widely used <a href=\"https:\/\/cyberscoop.com\/open-source-security-trust-xz-utils\/\">xz-utils<\/a> compression library, shaking the cybersecurity world. The discovery revealed that attackers had spent years slowly gaining trust and inserting malicious code into a tool relied on by Linux distributions worldwide. This wasn\u2019t a \u201csmash and grab\u201d hack. It was a long game, executed with surgical patience. Had it gone unnoticed, the backdoor could have become embedded in operating systems worldwide \u2014 including those used by federal contractors and sensitive national systems.<\/p>\n<p><strong>Open source is secure, but it isn\u2019t safe<\/strong><\/p>\n<p>Open-source software itself isn\u2019t the problem. In fact, it\u2019s more secure than proprietary code thanks to public scrutiny and rapid iteration. But the way it is currently consumed \u2014 through unverifiable binaries and unknown maintainers \u2014 is dangerously opaque. Today, most organizations rely on binaries \u2014 precompiled software artifacts \u2014 from open repositories like GitHub or Docker Hub. They are rarely verified, their build processes are often ambiguous, and their maintainers could be basement hobbyists or well-placed, patient foreign actors.<\/p>\n<p>The open-source ecosystem thrives on trust. But in an era of geopolitical tension and sophisticated cyber operations, trusting random strangers on the internet is no longer a rational option.<\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p><strong>We need a better way to consume open source<\/strong><\/p>\n<p>Federal efforts to address software supply chain risks have picked up in recent years. The Biden administration <a href=\"https:\/\/cyberscoop.com\/biden-administration-cybersecurity-executive-order-2025\/\">issued EO 14028<\/a>, emphasizing the need for software transparency and supply chain integrity. <a href=\"https:\/\/www.cisa.gov\/resources-tools\/resources\/cisa-open-source-software-security-roadmap\">CISA<\/a> and <a href=\"https:\/\/www.nist.gov\/itl\/executive-order-14028-improving-nations-cybersecurity\/software-security-supply-chains-open\">NIST<\/a> have published frameworks to mitigate risk in critical infrastructure. However, the gap between awareness and action remains wide.<\/p>\n<p>Today, there are no requirements for contractors to verify the provenance of the open-source tools they use. There are few incentives to adopt secure software development practices. And while Software Bills of Materials (SBOMs) may be widely discussed, <a href=\"https:\/\/cyberscoop.com\/dhs-sbom-adoption\/\">they lack mass adoption<\/a> and are poorly enforced.<\/p>\n<p>Congress and federal agencies can take clear, immediate steps to secure the nation\u2019s digital presence:<\/p>\n<ol class=\"wp-block-list\">\n<li>Mandate verifiable provenance of open-source components in all software used by federal agencies.<\/li>\n<li>Incentivize reproducible builds and signed attestations through procurement preferences and grants.<\/li>\n<li>Fund security audits and maintenance of critical open-source projects through the <a href=\"https:\/\/fedscoop.com\/trump-admin-technology-modernization-fund-2026-model-unused-money\/\">Technology Modernization Fund<\/a> or similar initiatives.<\/li>\n<li>Support digital identity frameworks that enable contributors to establish and verify trusted reputations.<\/li>\n<\/ol>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p>Foreign adversaries know they can target open-source software. They\u2019ve proven they\u2019re willing to play the long game. That\u2019s why we can no longer go on leveraging software without knowing who built it, how it was built, or whether it\u2019s been compromised. If we keep trusting unverified code, we\u2019re leaving the front door open.<\/p>\n<p>Open source isn\u2019t broken \u2014 but our systems for consuming and securing it are outdated. Until we fix that, we\u2019re exposing our national infrastructure to invisible threats from unknown actors.<\/p>\n<p><em>Dan Lorenc is the CEO and co-founder of Chainguard.<\/em><\/p>\n<p> <\/body> <\/p>\n<footer class=\"single-article__footer\" readability=\"0.38866396761134\">\n<div class=\"author-card\" readability=\"7\">\n<div class=\"author-card__avatar\">\n<figure class=\"author-card__image-wrap\"> <img data-recalc-dims=\"1\" decoding=\"async\" class=\"author-card__image\" src=\"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2025\/06\/unverified-code-is-the-next-national-security-threat-1.jpg?w=640&ssl=1\" alt=\"Dan Lorenc\"> <\/figure>\n<\/p><\/div>\n<p><h4 class=\"author-card__name\">Written by Dan Lorenc<\/h4>\n<p> Dan Lorenc is the co-founder and CEO of Chainguard. <\/p>\n<\/p><\/div>\n<div class=\"single-article__tags-container\">\n<h4 class=\"single-article__tags-title\">In This Story<\/h4>\n<\/p><\/div>\n<\/footer>\n<p> <\/html><\/div>\n<\/p><\/div>\n<\/p><\/div>\n<div class=\"single-article__ads js-single-article-sidebar\">\n<div class=\"ad ad--sidebar js-single-article-sidebar-5 ad--rightrail_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div class=\"ad ad--sidebar js-single-article-sidebar-4 ad--rightrail_2 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div class=\"ad ad--sidebar js-single-article-sidebar-3 ad--rightrail_3 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div><\/div>\n<\/article>\n<div class=\"popular-stories popular-stories--single-post\">\n<div class=\"popular-stories__container\">\n<h2 class=\"popular-stories__title\"> More Scoops <\/h2>\n<p>  <\/div>\n<p>\n<\/div>\n<p> <\/p>\n<section class=\"latest-podcasts\">\n<h2 class=\"latest-podcasts__title\"> Latest Podcasts\t<\/h2>\n<\/section>\n<div class=\"top-categories\">\n<div class=\"top-categories__container\">\n<h3 class=\"top-categories__category-title\">Government<\/h3>\n<\/p><\/div>\n<div class=\"top-categories__container\">\n<h3 class=\"top-categories__category-title\">Technology<\/h3>\n<\/p><\/div>\n<\/p><\/div>\n<p> <\/main> <\/p>\n<div class=\"ad ad--bottom \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div id=\"interstitial\" class=\"welcome__container\"> <button id=\"close-modal-1\" class=\"welcome__clickable_area\"><\/button> <\/p>\n<div class=\"welcome__ad_wrapper\">\n<p> <button id=\"close-modal-3\" class=\"welcome__continue-button\">Continue to CyberScoop<\/button> <\/p>\n<\/p><\/div>\n<\/p><\/div>\n<p>   <\/body> <a href=\"https:\/\/cyberscoop.com\/unverified-code-is-the-next-national-security-threat-op-ed\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Unverified code is the next national security threat | CyberScoop<\/p>\n","protected":false},"author":11,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[3687,280,78,452,725,532,927,2807,1073,439,1768,3494],"tags":[3689,284,86,454,728,537,929,2808,1076,443,1773,3497],"class_list":["post-7719","post","type-post","status-publish","format-standard","hentry","category-chainguard","category-commentary","category-cybersecurity","category-cybersecurity-and-infrastructure-security-agency-cisa","category-github","category-linux","category-nist","category-op-ed","category-open-source","category-policy","category-software-bill-of-materials","category-technology-modernization-fund","tag-chainguard","tag-commentary","tag-cybersecurity","tag-cybersecurity-and-infrastructure-security-agency-cisa","tag-github","tag-linux","tag-nist","tag-op-ed","tag-open-source","tag-policy","tag-software-bill-of-materials","tag-technology-modernization-fund"],"featured_image_urls":{"full":"","thumbnail":"","medium":"","medium_large":"","large":"","1536x1536":"","2048x2048":"","chromenews-featured":"","chromenews-large":"","chromenews-medium":""},"author_info":{"display_name":"Cyber Scoop","author_link":"https:\/\/ddi.mohflo.net\/index.php\/author\/cyberscoop\/"},"category_info":"<a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/chainguard\/\" rel=\"category tag\">Chainguard<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/commentary\/\" rel=\"category tag\">Commentary<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/cybersecurity\/\" rel=\"category tag\">Cybersecurity<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/cybersecurity-and-infrastructure-security-agency-cisa\/\" rel=\"category tag\">Cybersecurity and Infrastructure Security Agency (CISA)<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/github\/\" rel=\"category tag\">GitHub<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/linux\/\" rel=\"category tag\">Linux<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/nist\/\" rel=\"category tag\">NIST<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/op-ed\/\" rel=\"category tag\">op-ed<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/open-source\/\" rel=\"category tag\">open source<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/policy\/\" rel=\"category tag\">Policy<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/software-bill-of-materials\/\" rel=\"category tag\">software bill of materials<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/technology-modernization-fund\/\" rel=\"category tag\">Technology Modernization Fund<\/a>","tag_info":"Technology Modernization Fund","comment_count":"0","jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/7719","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/users\/11"}],"replies":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/comments?post=7719"}],"version-history":[{"count":0,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/7719\/revisions"}],"wp:attachment":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/media?parent=7719"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/categories?post=7719"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/tags?post=7719"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}

{"id":7719,"date":"2025-06-09T06:00:00","date_gmt":"2025-06-09T11:00:00","guid":{"rendered":"https:\/\/cyberscoop.com\/?p=84798"},"modified":"2025-06-09T06:00:00","modified_gmt":"2025-06-09T11:00:00","slug":"unverified-code-is-the-next-national-security-threat","status":"publish","type":"post","link":"https:\/\/ddi.mohflo.net\/index.php\/2025\/06\/09\/unverified-code-is-the-next-national-security-threat\/","title":{"rendered":"Unverified code is the next national security threat"},"content":{"rendered":"