#pypi Tech News.
1 story in the last 7 days
The latest pypi news, distilled by AI into sharp ~100-word summaries. ByteBrief tracks pypi across dozens of tech sources and brings you only what matters, updated hourly. Tap any story for the full brief, or open the original source.
DevBleepingComputer32 minutes ago
New Shai-Hulud attack trojanizes 19 science-focused PyPI packagesHackers compromised 19 PyPI packages, including bioinformatics tools Dynamo and CoolBox, in the Shai-Hulud supply-chain attack. The malware uses a.pth file and obfuscated JavaScript to steal developer secrets, with execution triggered simply by starting Python. Socket discovered the campaign, which now totals 453 malicious artifacts.
Summaries by ByteBrief