Mistral AI Python package compromised on PyPI [2026-05-12]
The Mistral AI Python package version 2.4.6 has been compromised, containing a backdoor that executes a payload on Linux systems. This malicious code downloads and runs a script from a hardcoded IP address upon import. Users are advised to yank the affected version from PyPI and check for potential infections.
- ▪Version 2.4.6 of the Mistral AI package includes a backdoor that activates on import.
- ▪The backdoor downloads a payload from a specific IP address and executes it on Linux systems.
- ▪Users who installed this version should investigate their systems for the downloaded payload.
Opening excerpt (first ~120 words) tap to expand
mistralai / client-python Public Notifications You must be signed in to change notification settings Fork 190 Star 739 Code Issues 17 Pull requests 7 Actions Projects Security and quality 1 Insights Additional navigation options Code Issues Pull requests Actions Projects Security and quality Insights {"payload":{"preloaded_records":{},"structured_data":{"@context":"https://schema.org","@type":"DiscussionForumPosting","headline":"[SECURITY] Supply chain compromise in mistralai 2.4.6 — backdoor downloads and executes payload from hardcoded IP","articleBody":"### Python -VV\n\n```shell\n## Summary\n\n`[email protected]` contains a backdoor in `src/mistralai/client/__init__.py` (lines 21-48) that downloads and executes an arbitrary payload from a hardcoded IP address on Linux systems at import…
Excerpt limited to ~120 words for fair-use compliance. The full article is at GitHub.