{
    "type": "bundle",
    "id": "bundle--94f87bea-0c1b-4822-b1b8-fc1a19a3c910",
    "objects": [
        {
            "type": "identity",
            "spec_version": "2.1",
            "id": "identity--25b39c76-c23d-48fc-a72b-fa4a7e9f66fa",
            "created": "2025-07-31T05:33:50.624515Z",
            "modified": "2025-07-31T05:35:55.043906Z",
            "name": "Sonatype",
            "identity_class": "organization"
        },
        {
            "type": "threat-actor",
            "spec_version": "2.1",
            "id": "threat-actor--af08d5c9-f507-5ed5-9986-7ffea3df195b",
            "created": "2026-06-24T21:02:47.674327Z",
            "modified": "2026-06-24T21:02:47.674327Z",
            "name": "Lazarus"
        },
        {
            "type": "report",
            "spec_version": "2.1",
            "id": "report--d2f83fdd-3d8f-497d-bfc0-59e5c17f0e9d",
            "created_by_ref": "identity--25b39c76-c23d-48fc-a72b-fa4a7e9f66fa",
            "created": "2026-06-24T21:02:47.675365Z",
            "modified": "2026-06-24T21:02:47.675365Z",
            "name": "How North Korea-Backed Lazarus Group Is Weaponizing Open Source to Target Developers",
            "published": "2025-07-31T00:00:00Z",
            "object_refs": [
                "identity--25b39c76-c23d-48fc-a72b-fa4a7e9f66fa",
                "threat-actor--af08d5c9-f507-5ed5-9986-7ffea3df195b"
            ],
            "external_references": [
                {
                    "source_name": "source",
                    "url": "https://www.sonatype.com/resources/whitepapers/how-lazarus-group-is-weaponizing-open-source"
                }
            ]
        }
    ]
}