The report outlines how AI tools are increasing software supply chain risks by generating insecure code and importing vulnerable dependencies. It also highlights that most Model Context Protocol servers lack crucial safeguards, making them unreliable for enterprise use. Endor Labs urges organizations to treat AI-generated code as untrusted and apply the same security measures as they do for human-written code.