Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.

The Python Software Foundation (PSF) has an extra $1.5 million heading its way, after AI upstart Anthropic entered into a ...

A report from ReversingLabs reveals a massive 73% increase in malicious open-source packages in 2025, with over 10,000 ...

With the PyArrow library installed, pandas 3.0 interprets string columns automatically as the str data type instead of NumPy- ...

Stranger Things concept of the “Upside Down” is a useful way to think about the risks lurking in the software we all rely on.

Familiar bugs in a popular open source framework for AI chatbots could give attackers dangerous powers in the cloud.

Security researchers uncovered two vulnerabilities in the popular Python-based AI app building tool that could allow ...

Vulnerabilities in Chainlit could be exploited without user interaction to exfiltrate environment variables, credentials, ...

Linux users face a new threat as cybercriminals exploit a critical vulnerability in Canonical’s Snap Store, hijacking trusted ...

New Preventive Controls and Developer Integrations Powered 2025 Innovation Veracode, the global leader in application risk management, today announced significant platform innovations introduced ...

Anthropic is entering into a two-year partnership with the Python Software Foundation. The company is investing a total of $1 ...