Neowin News Feed for: Pypi https://www.neowin.net/news/tag/pypi/ Neowin News Feed for: Pypi en-us Neowin Ignition News editor@neowin.net (Managing Editor) developers@neowin.net (Neowin Developers) 5 Neowin.net https://www.neowin.net/images/pegasus/icon.png https://www.neowin.net Python developers, uninstall this malicious package right now https://www.neowin.net/news/python-developers-uninstall-this-malicious-package-right-now/ <div style="float:left;margin-right:10px;"><img src="https://cdn.neowin.com/news/images/uploaded/2023/01/1672671933_capture_medium.jpg" alt="" /></div>Python developers who spent some time coding over the holiday break may want to check out an advisory regarding a malicious PyTorch package that was being fetched from PyPI last week. <a href="https://www.neowin.net/news/python-developers-uninstall-this-malicious-package-right-now/">Read more...</a> Usama Jawad Mon, 02 Jan 2023 15:24:01 +0000 https://www.neowin.net/news/python-developers-uninstall-this-malicious-package-right-now/ #PyTorch #Python #Malware @UsamaJawad96 Package Analysis Project: Google will help detect malicious open source packages https://www.neowin.net/news/package-analysis-project-google-will-help-detect-malicious-open-source-packages/ <div style="float:left;margin-right:10px;"><img src="https://cdn.neowin.com/news/images/uploaded/2022/04/1651218816_v6duco_(2)_medium.jpg" alt="" /></div>Google has pledged support for OpenSSF&#039;s Package Analysis Project for open source packages uploaded to popular repositories. It has also published the results which paint a rather interesting picture. <a href="https://www.neowin.net/news/package-analysis-project-google-will-help-detect-malicious-open-source-packages/">Read more...</a> Usama Jawad Fri, 29 Apr 2022 07:58:01 +0000 https://www.neowin.net/news/package-analysis-project-google-will-help-detect-malicious-open-source-packages/ #Google #OSS #OpenSource @UsamaJawad96 Official Python repository used to distribute cryptomining malware https://www.neowin.net/news/official-python-repository-used-to-distribute-cryptomining-malware/ <div style="float:left;margin-right:10px;"><img src="https://cdn.neowin.com/news/images/uploaded/2021/06/1624495426_obfuscated_code_medium.jpg" alt="" /></div>The official Python software repository, PyPI, was discovered to host six packages that would download and install cryptomining software on affected systems according to a new report. <a href="https://www.neowin.net/news/official-python-repository-used-to-distribute-cryptomining-malware/">Read more...</a> Chris Dupres Thu, 24 Jun 2021 05:58:02 +0000 https://www.neowin.net/news/official-python-repository-used-to-distribute-cryptomining-malware/ #python #malwareb #pypi @blaktron