With GitHub’s co-operation, the researchers were able to determine there were around 2.87 million open-source files containing Python’s tarfile module in about 588,000 unique repositories.

They also discovered 2.87 million open-source files containing Python’s tarfile module in approximately 588,000 unique repositories with 61% (350,000) vulnerable.

Researchers at Protect AI have released Vulnhuntr, a free, open source static code analyzer tool that can find zero-day vulnerabilities in Python codebases using Anthropic's Claude artificial ...