简体中文
English Indonesia Türkçe Deutsch Español Português Pусский Français Italiano Nederlands Polski العربية ไทย Tiếng Việt 繁體中文 简体中文 日本語 한국어

#pypi 搜索结果

cod3nym's profile picture. Threat Researcher | Detection Engineer @nextronsystems @nextronresearch #Yara enthusiast | C# Developer
Jonathan Peters
@cod3nym
年12月2日

We @nextronresearch scan many public repos like npm, pypi, vscode marketplace etc. And we find a lot of shitty malware :) Example: pypi.org/project/multit… SHA256: 79cc98d0831e7b6a191000ec997ebc1853b1f6cc1190dbb855b97d7bf418c287 #PyPi

cod3nym's tweet image. We @nextronresearch scan many public repos like npm, pypi, vscode marketplace etc. And we find a lot of shitty malware :) Example: pypi.org/project/multit… SHA256: 79cc98d0831e7b6a191000ec997ebc1853b1f6cc1190dbb855b97d7bf418c287 #PyPi
0
8
14
1
1千
plastic96_'s profile picture. • Speak English, Chinese & Ancient Greek • Taught Jimi Hendrix how to play guitar • Been on the moon, twice • Responsible
Akshita Dixit
 @plastic96_
2024年8月24日

I was annoyed of having to write README files for my projects. So I went ahead and created a CLI tool to auto-generate README files for any project regardless of programming language! 📜✨ It creates a comprehensive README based on your project. Check it out on #PyPI and #npm

plastic96_'s tweet image. I was annoyed of having to write README files for my projects. So I went ahead and created a CLI tool to auto-generate README files for any project regardless of programming language! 📜✨ It creates a comprehensive README based on your project. Check it out on #PyPI and #npm
plastic96_'s tweet image. I was annoyed of having to write README files for my projects. So I went ahead and created a CLI tool to auto-generate README files for any project regardless of programming language! 📜✨ It creates a comprehensive README based on your project. Check it out on #PyPI and #npm
18
11
133
76
12千
bzvr_'s profile picture. Senior Security Researcher @ Kaspersky, GReAT | Drovosec CTF team | Tweets are my own
Leonid Bezvershenko
@bzvr_
2024年11月20日

🚨 We discovered two malicious Python packages in #PyPI repository that remained undetected for over a year. These packages mimicked tools for working with popular AI language models (#ChatGPT and #Claude), silently exfiltrating data and compromising developer environments.…

bzvr_'s tweet image. 🚨 We discovered two malicious Python packages in #PyPI repository that remained undetected for over a year. These packages mimicked tools for working with popular AI language models (#ChatGPT and #Claude), silently exfiltrating data and compromising developer environments.…
15
275
966
362
161千
ThePSF's profile picture. The nonprofit organization behind the Python programming language. For help with Python code: https://t.co/XDHPttz2Xv On Mastodon: @ThePSF@fosstodon.org
Python Software Foundation
@ThePSF
年10月29日

PyPI serves billions of requests daily- but sustaining it isn’t free. The PSF joined the OpenSSF & others in calling for organizations to invest in sustainable open infrastructure. Learn what this means for #PyPI, the PSF, & how our community can pitch in: pyfound.blogspot.com/2025/10/open-i…

15
11
63
3
10千
JFrogSecurity's profile picture. The JFrog Security Research Team empowers developers and companies to excel by identifying, prioritizing, and mitigating software risks.
JFrog Security
@JFrogSecurity
2024年9月4日

🚨Over 22k packages are vulnerable (or over 120k by looser measurement) to a new #SoftwareSupplyChain attack vector: Hijacking abandoned #PyPI packages. Potentially critical for orgs relying on abandoned packages, learn more about our team's discovery: jfrog.co/4gpsbUH

JFrogSecurity's tweet image. 🚨Over 22k packages are vulnerable (or over 120k by looser measurement) to a new #SoftwareSupplyChain attack vector: Hijacking abandoned #PyPI packages. Potentially critical for orgs relying on abandoned packages, learn more about our team's discovery: jfrog.co/4gpsbUH
1
8
12
0
747
ReversingLabs's profile picture. ReversingLabs is the trusted name in file and software security. RL - Trust Delivered.
ReversingLabs
@ReversingLabs
年7月7日

⚠️🧵 RL threat researchers detected an impersonation attempt targeting a popular #PyPI cloudscraper package with more than 50M downloads. It has the suffix "safe" added, but it is all but safe: secure.software/pypi/packages/…

ReversingLabs's tweet image. ⚠️🧵 RL threat researchers detected an impersonation attempt targeting a popular #PyPI cloudscraper package with more than 50M downloads. It has the suffix "safe" added, but it is all but safe: secure.software/pypi/packages/…
1
3
7
2
779
xavierfiechter's profile picture. I'm building @labelbase_space, the all-in-one label and coin control management service for Bitcoin, and focusing on other projects related to BIP-329.
Xavier "The Label Guy" Fiechter
@xavierfiechter
年9月26日

🎉 Just published bip329 v1.0.0 to PyPI! pip install bip329==1.0.0 #Python #PyPI #OpenSource #bip329

xavierfiechter's tweet image. 🎉 Just published bip329 v1.0.0 to PyPI! pip install bip329==1.0.0 #Python #PyPI #OpenSource #bip329
1
1
3
0
189
ReversingLabs's profile picture. ReversingLabs is the trusted name in file and software security. RL - Trust Delivered.
ReversingLabs
@ReversingLabs
年6月24日

It's been a busy day for us! ⚠️🧵 RL's automated detection system flagged a new malicious #PyPI package: secure.software/pypi/packages/… While name would suggest this is a ChatGPT related project, it actually contains a #malware loader.

ReversingLabs's tweet image. It's been a busy day for us! ⚠️🧵 RL's automated detection system flagged a new malicious #PyPI package: secure.software/pypi/packages/… While name would suggest this is a ChatGPT related project, it actually contains a #malware loader.
1
3
2
0
413
jfrog's profile picture. Driven by a “Liquid Software” vision, the JFrog Software Supply Chain Platform powers organizations to build, manage, and distribute software quickly & securely
JFrog
@jfrog
2024年9月4日

🚨Over 22k packages are vulnerable (or over 120k by looser measurement) to a new #SoftwareSupplyChain attack vector: Hijacking abandoned #PyPI packages. Potentially critical for orgs relying on abandoned packages, learn more about our team's discovery: jfrog.co/4gpsbUH

jfrog's tweet image. 🚨Over 22k packages are vulnerable (or over 120k by looser measurement) to a new #SoftwareSupplyChain attack vector: Hijacking abandoned #PyPI packages. Potentially critical for orgs relying on abandoned packages, learn more about our team's discovery: jfrog.co/4gpsbUH
0
3
8
0
374
jfrog's profile picture. Driven by a “Liquid Software” vision, the JFrog Software Supply Chain Platform powers organizations to build, manage, and distribute software quickly & securely
JFrog
@jfrog
2024年9月5日

"This attack technique involves hijacking PyPI software packages by manipulating the option to re-register them once they're removed from #PyPI's index by the original owner," JFrog security researchers Andrey Polkovnychenko & Brian Moussalli Learn more: jfrog.co/4cSgBOK

jfrog's tweet image. "This attack technique involves hijacking PyPI software packages by manipulating the option to re-register them once they're removed from #PyPI's index by the original owner," JFrog security researchers Andrey Polkovnychenko & Brian Moussalli Learn more: jfrog.co/4cSgBOK
0
2
5
0
268
the_yellow_fall's profile picture. Welcome to the Daily Cybersecurity site, your trusted source for cybersecurity news and insights since 2017!
Gray Hats
 @the_yellow_fall
年11月24日

A malicious PyPI typosquat (spellcheckers) infected 950+ users. The package deploys an XOR-encrypted Python RAT via a hidden index file, granting full remote execution (exec()) and is linked to crypto scams. #PyPI #SupplyChain #PythonRAT #Cybersecurity securityonline.info/pypi-typosquat…

the_yellow_fall's tweet card. A malicious PyPI typosquat (spellcheckers) infected 950+ users. The package deploys an XOR-encrypted Python RAT via a hidden index file, granting full remote execution (exec()) and is linked to...
PyPI Typosquat Delivers Multi-Layer Python RAT, Bypassing Scanners with XOR Encryption
来源: securityonline.info
0
2
2
0
321
ActiveState's profile picture. ActiveState enables DevOps, InfoSec, and Development teams to improve their security posture while simultaneously increasing productivity and innovation.
ActiveState
@ActiveState
2024年4月17日

🎉 ActiveState is pleased to announce our inclusion as a Trusted Publisher to PyPI, enabling Python authors to securely publish Python packages directly via ActiveState’s Platform. Become a trusted author today: ow.ly/Z34i50RikiO #ActiveState #TrustedPublisher #PyPI

1
4
5
1
1千
fastly's profile picture. Get more powerful websites and applications with Fastly’s edge cloud platform. We help places like Reddit, Epic Games, the NYT, and GitHub do so every day.
Fastly
@fastly
年9月17日

How do you optimize package delivery for 950,000+ Python developers? Check out how we're using Individual Provider Anycast to power platforms like @PyPI, where small improvements × billions of requests = massive impact! fastly.com/blog/powering-… #fastforward #pypi

fastly's tweet image. How do you optimize package delivery for 950,000+ Python developers? Check out how we're using Individual Provider Anycast to power platforms like @PyPI, where small improvements × billions of requests = massive impact! fastly.com/blog/powering-… #fastforward #pypi
0
0
1
0
526
karaage0703's profile picture. エンジニア/AIのお仕事してます/からあげ大好き/はてなブログ書いてます/色々作ってます/からあげは概念/Amazonのアソシエイトとして適格販売により収入を得ています
からあげ
@karaage0703
年10月26日

🔖 Zenn過去記事投稿 自分だけのライブラリを作ってみよう! 【Pythonで自分だけのクソライブラリを作る方法】 ✅ PyPIへの公開手順を解説 ✅ パッケージ構成のベストプラクティス ✅ 実用的なライブラリ開発のコツ #Python #ライブラリ開発 #PyPI #OSS zenn.dev/karaage0703/ar…

karaage0703's tweet card. Pythonで自分だけのクソライブラリを作る方法
Pythonで自分だけのクソライブラリを作る方法
来源: zenn.dev
0
4
34
21
6千
faissaloux's profile picture. Software Engineer / Fullstack web developer / opensource — created @termspark, @geranslator ... https://t.co/OWNpWlDucF
faissal wahabali 👌
 @faissaloux
2023年12月3日

This is done by Termspark 🔥 Text blink, italic text and more styles support on next release (1.7.0) Wait for it! #python #pypi #opensource

0
1
2
0
43
evanderburg's profile picture. Cybersecurity, Privacy, and Tech Leader, Author, Consultant, and Speaker, Opinions are my own.
Eric Vanderburg
 @evanderburg
年2月3日

#DeepSeek’s popularity exploited to push malicious packages via #PyPI securitytc.com/THlZ6L

evanderburg's tweet image. #DeepSeek’s popularity exploited to push malicious packages via #PyPI securitytc.com/THlZ6L
0
0
1
0
80
SethKingHi's profile picture. Senior Security Researcher @kaspersky GReAT, tweets and opinions are my own.
SKII
@SethKingHi
年7月24日

#OceanLotus #APT32 #PyPi uuid32_utils-1.x.x-py3-none-win32.whl cf3f59e2c4c8767697ea46475171697c 91a476fea45abc8b208e0a9e3293f774 a7a0add66b205967562c1fa9643b8421 22538214a3c917ff3b13a9e2035ca521 02f4701559fc40067e69bb426776a54f 5598baa59c716590d8841c6312d8349e Backward.dll…

SethKingHi's tweet image. #OceanLotus #APT32 #PyPi uuid32_utils-1.x.x-py3-none-win32.whl cf3f59e2c4c8767697ea46475171697c 91a476fea45abc8b208e0a9e3293f774 a7a0add66b205967562c1fa9643b8421 22538214a3c917ff3b13a9e2035ca521 02f4701559fc40067e69bb426776a54f 5598baa59c716590d8841c6312d8349e Backward.dll…
SethKingHi's tweet image. #OceanLotus #APT32 #PyPi uuid32_utils-1.x.x-py3-none-win32.whl cf3f59e2c4c8767697ea46475171697c 91a476fea45abc8b208e0a9e3293f774 a7a0add66b205967562c1fa9643b8421 22538214a3c917ff3b13a9e2035ca521 02f4701559fc40067e69bb426776a54f 5598baa59c716590d8841c6312d8349e Backward.dll…
SethKingHi's tweet image. #OceanLotus #APT32 #PyPi uuid32_utils-1.x.x-py3-none-win32.whl cf3f59e2c4c8767697ea46475171697c 91a476fea45abc8b208e0a9e3293f774 a7a0add66b205967562c1fa9643b8421 22538214a3c917ff3b13a9e2035ca521 02f4701559fc40067e69bb426776a54f 5598baa59c716590d8841c6312d8349e Backward.dll…
2
6
22
2
3千
the_yellow_fall's profile picture. Welcome to the Daily Cybersecurity site, your trusted source for cybersecurity news and insights since 2017!
Gray Hats
 @the_yellow_fall
年9月22日

A new supply chain attack on PyPI is delivering SilentSync, a Python RAT. The malware steals credentials and files from developers' systems. #PyPI #SupplyChainAttack #Python #Malware #Cybersecurity securityonline.info/pypi-under-att…

the_yellow_fall's tweet card. A new supply chain attack on PyPI is delivering SilentSync, a Python RAT. The malware steals credentials and files from developers' systems.
PyPI Under Attack: New Malware 'SilentSync' Is Stealing Credentials
来源: securityonline.info
0
3
3
1
554
未找到 "#pypi" 的结果
未找到 "#pypi" 的结果

Something went wrong.


Something went wrong.


United States Trends