News
The Python Software Foundation (PSF) has rushed out Python 3.9.2 and 3.8.8 to address two notable security flaws, including one that is remotely exploitable but in practical terms can only be used ...
Google open-sources Atheris, a tool for finding security bugs in Python code Atheris helps developers find bugs in Python-based codebases using a technique called fuzzing.
PyPI malware termncolor and colorinal downloaded 884 times exploit DLL side-loading, persistence, and C2 communication.
1mon
Nearly half of all code generated by AI found to contain security flaws - even big LLMs affected
Nearly half (45%) of AI-generated code contains security flaws despite appearing production-ready, new research from Veracode ...
Several harmful Python .whl files containing a new type of malware called “Kekw” have been discovered on PyPI (Python Package Index). According to new data by Cyble Research and Intelligence Labs ...
Python's ctx library and a fork of PHP's phpass have been compromised. 3 million users combined. The malicious code sends all the environment variables to a heroku app, likely to mine AWS credentials.
Security researchers have identified a new cyber-threat targeting publicly exposed instances of the Docker Engine API. In this campaign, attackers exploit misconfigurations to deploy a malicious ...
Announced in early July, the security-driven consideration has been largely well received by Python’s community members, although one well-known developer opted to delete their code from PyPI ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback