Alex Birsan came up with a method to breach 35 big tech companies including Microsoft, Apple, Yelp, Paypal, Shopify, Netflix, Tesla, and Uber. The method relies on so-called dependency confusion which exploits the confusion about the possible locations that computer programs use to find the files a project depends on. He found that the affected companies used locally stored files that were not present in the open-source directory. He has earned $130,000 in bug bounties from bug bounty programs.”]