Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.

A report from ReversingLabs reveals a massive 73% increase in malicious open-source packages in 2025, with over 10,000 ...

The Python Software Foundation (PSF) has an extra $1.5 million heading its way, after AI upstart Anthropic entered into a ...

With the PyArrow library installed, pandas 3.0 interprets string columns automatically as the str data type instead of NumPy- ...

Stranger Things concept of the “Upside Down” is a useful way to think about the risks lurking in the software we all rely on.

Anthropic has committed $1.5 million to the Python Software Foundation (PSF) under a two-year partnership aimed at strengthening security across Python’s core infrastructure and package ecosystem. The ...

Security researchers uncovered two vulnerabilities in the popular Python-based AI app building tool that could allow ...

Familiar bugs in a popular open source framework for AI chatbots could give attackers dangerous powers in the cloud.

Vulnerabilities in Chainlit could be exploited without user interaction to exfiltrate environment variables, credentials, ...

New Preventive Controls and Developer Integrations Powered 2025 Innovation Veracode, the global leader in application risk management, today announced significant platform innovations introduced ...

Anthropic is entering into a two-year partnership with the Python Software Foundation. The company is investing a total of $1 ...

Linux users face a new threat as cybercriminals exploit a critical vulnerability in Canonical’s Snap Store, hijacking trusted ...