By leveraging social

engineering to gain the maintainer’s trust and control over the project

By bypassing Linux

security protocols through direct kernel modifications

By exploiting the

lack of formal review processes in open-source projects

By bribing other

developers to approve their contributions