New Shai-Hulud attack trojanizes 19 science-focused PyPI packages

Hackers compromised 19 packages on the PyPI, collectively downloaded hundreds of thousands of times, in a new Shai-Hulud ...
GitHub

A modular bot for automating Fisch-like games using computer vision.

It is recommended to use a Python virtual environment to run this script. Terminate it by closing the command prompt window or put the window into focus and press Ctrl+C to break out of the script.
CSO Online

Hugging Face Transformers RCE flaw enables stealthy compromise via AI model configs

With over 2.2 billion installs, the flawed Python package offers attackers a huge blast radius, including silent access to ...