Pypi coverage.

Running Python code in a sandbox with MicroPython and WASM

I've been experimenting with different approaches to running code in a sandbox for several years now, but my latest attempt feels like it might finally have all of the characterist…

PyCon US 2026 Packaging Summit Recap

Per-talk notes from the PyCon US 2026 Packaging Summit in Long Beach: Emma Smith on Wheel 2.0 and Zstandard compression, Mike Fiedler on PyPI abuse vectors, Mahe Iram Khan on ecosy…

TrapDoor Supply Chain Campaign Targets npm, PyPI, and Crates.io to Poison AI Coding Agents

TrapDoor supply chain attack hits PyPI, NPM, and crates.io

TrapDoor crypto stealer hits 36 malicious packages across npm, PyPI, and Crates.io, targeting crypto, DeFi, AI, and security developers.…

TrapDoor Cross-Ecosystem Crypto Stealer Campaign

TrapDoor is an active cross-registry supply-chain campaign using npm postinstall hooks, PyPI import-time execution, and Rust build scripts to steal developer, cloud, SSH, and crypt…

TrapDoor supply-chain campaign hits npm, PyPI, and Crates.io with AI-assistant poisoning angle

TrapDoor supply-chain campaign targeted npm, PyPI, and Crates.io packages

TrapDoor supply-chain campaign hits npm, PyPI, and Crates.io with AI-assistant poisoning angle

Active supply chain attack across NPM, PyPI, and Crates. io

14 npm/PyPI/AI Supply-Chain Threats Today (2026-05-22): Critical Worms, Credential Harvesting, and RCEs

Mistral AI Python package compromised on PyPI [2026-05-12]

Python -VV ## Summary `[email protected]` contains a backdoor in `src/mistralai/client/__init__.py` (lines 21-48) that downloads and executes an arbitrary payload from a hardcoded IP…

TypedMemory – long-term memory and reflection for AI agents

TypedMemory. Contribute to canis-minor/typedmem development by creating an account on GitHub.…

Python One go: Bootstrapped uncertainty quantification given observation matrix

High-Entropy Randomness Research Toolkit. High-Entropy Random Number Generation (HE-RNG). - msuzen/leymosun…