News

The Hacker News1d

20 Popular npm Packages With 2 Billion Weekly Downloads Compromised in Supply Chain Attack

According to ReversingLabs' 2025 Software Supply Chain Security Report, 14 of the 23 crypto-related malicious campaigns in ...

Dev snared in crypto phishing net, 18 npm packages compromised

Crims have added backdoors to at least 18 npm packages after developer Josh Junon inadvertently authorized a reset of the two ...
GitHub8d

A catalog/overview of Python packages in the area of lab ... - GitHub

Python lab automation landscape catalog This page should serve as a catalog of Python packages for laboratory automation, meaning data acquisition and control of hardware instruments during ...
IEEE10d

An Empirical Analysis of Vulnerabilities in Python Packages for Web ...

This paper examines software vulnerabilities in common Python packages used particularly for web development. The empirical dataset is based on the PyPI package repository and the so-called Safety DB ...
The Hacker News12d

Researchers Find VS Code Flaw Allowing Attackers to Republish Deleted Extensions Under Same Names

VS Code flaw lets attackers reuse deleted extension names, enabling ransomware payload delivery and supply chain risks.
GitHub12d

python-libraries · GitHub Topics · GitHub

Utilizes Python libraries for data exploration, data cleaning, manipulation, and visualization. Provides valuable insights for travelers, hosts, and the Airbnb business.
IEEE14d

PsmPy: A Package for Retrospective Cohort Matching in Python

Propensity score matching (PSM) is a technique used in retrospective investigation of cohort matching as an alternative approach to the prospective matching that is typically used by a randomized ...
InfoWorld20d

PyApp: An easy way to package Python apps as executables

Written in Rust, the PyApp utility wraps up Python programs into self-contained click-to-run executables. It might be the easiest Python packager yet.