PyPI loophole puts thousands of packages at risk of compromise
Thousands of applications that have taken advantage of open source Python Package Index (PyPI) software packages may be at risk of hijacking and subversion by malicious actors, opening up the possibility of major supply chain attacks affecting even greater numbers of downstream organisations and users. That is according to threat researchers at jFrog, who identified…
PyPI loophole puts thousands of packages at risk of compromise Read More »