Loading: GitLab’s open source Package Hunter detects malicious code in dependencies