News

Bleeping Computer7y

Python Package Installation Can Trigger Malicious Code

Malicious libraries are not uncommon in package repositories. Last year, researchers discovered ten of them in PyPi, the official third-party store for Python programming language.
Ars Technica7y

Devs unknowingly use “malicious” modules snuck into official Python ...

Devs unknowingly use “malicious” modules snuck into official Python repository Code packages available in PyPI contained modified installation scripts.
Yahoo Finance3mon

Introducing Chainguard Libraries for Python: Malware-Resistant ...

Chainguard Libraries for Python integrates with existing artifact managers to empower application security teams to close this massive security hole while meeting developers how they work.