News

PyPI halted new users and projects while it fended off supply-chain attack Automation is making attacks on open source code repositories harder to fight.
While they aren’t checking each line of code of every project, they are ensuring that “colorama” gets packaged instead of “colourama”. In contrast to PyPi’s 156,750 Python modules ...