Malicious package in CI (npm, pip) - Scan dependency trees and lockfiles for unexpected packages.
Attackers may attempt to tear down established BGP sessions by spoofing packets. An Overview of BGP Hijacking - Bishop Fox hacktricks 179 best
Go practice. Break things (ethically). And always keep HackTricks in your back pocket. Malicious package in CI (npm, pip) - Scan