{
    "type": "bundle",
    "id": "bundle--b8f4b7fa-ae5f-414b-bc7d-7286c39a13cc",
    "objects": [
        {
            "type": "identity",
            "spec_version": "2.1",
            "id": "identity--25b39c76-c23d-48fc-a72b-fa4a7e9f66fa",
            "created": "2025-07-31T05:33:50.624515Z",
            "modified": "2025-07-31T05:35:55.043906Z",
            "name": "Sonatype",
            "identity_class": "organization"
        },
        {
            "type": "threat-actor",
            "spec_version": "2.1",
            "id": "threat-actor--af08d5c9-f507-5ed5-9986-7ffea3df195b",
            "created": "2026-06-30T22:59:03.865868Z",
            "modified": "2026-06-30T22:59:03.865868Z",
            "name": "Lazarus"
        },
        {
            "type": "report",
            "spec_version": "2.1",
            "id": "report--d2f83fdd-3d8f-497d-bfc0-59e5c17f0e9d",
            "created_by_ref": "identity--25b39c76-c23d-48fc-a72b-fa4a7e9f66fa",
            "created": "2026-06-30T22:59:03.86688Z",
            "modified": "2026-06-30T22:59:03.86688Z",
            "name": "How North Korea-Backed Lazarus Group Is Weaponizing Open Source to Target Developers",
            "published": "2025-07-31T00:00:00Z",
            "object_refs": [
                "identity--25b39c76-c23d-48fc-a72b-fa4a7e9f66fa",
                "threat-actor--af08d5c9-f507-5ed5-9986-7ffea3df195b"
            ],
            "external_references": [
                {
                    "source_name": "source",
                    "url": "https://www.sonatype.com/resources/whitepapers/how-lazarus-group-is-weaponizing-open-source"
                }
            ]
        }
    ]
}