The evolution of software supply chain attacks from SolarWinds to AI model poisoning - and the DevSecOps practices that …