/CNW/ -- The Algorand Foundation today announces the launch of AlgoKit 2.0, the latest upgrade to the AlgoKit command line interface (CLI) – a simple, one-stop ...

Python's ctx library and a fork of PHP's phpass have been compromised. 3 million users combined. The malicious code sends all the environment variables to a heroku app, likely to mine AWS credentials.

Chainguard, the secure foundation for software development and deployment, today announced Chainguard Libraries for Python, an index of malware-resistant Python dependencies built securely from ...

A Python coding community is undergoing a software supply-chain attack, with threat actors targeting the 170,000-strong Top.gg GitHub organisation with malware.

According to researchers at JFrog, a software supply chain platform, there are more than 22,000 deleted packages on PyPI that are vulnerable to the Revival Hijack attack, and some of them quite ...

Now Google is making a $350,000 donation to support some Python Software Foundation (PSF) projects that aim to improve the supply-chain security of the Python ecosystem.

The PyPI registry has suffered several supply-chain attacks over the past few years, with malicious code injection. Got a news tip for our journalists? Share it with us anonymously here.