Active Malware Campaign Targeting Popular Python Packages Underway

This page summarizes the projects mentioned and recommended in the original post on /r/netsec

InfluxDB - Purpose built for real-time analytics at any scale.
InfluxDB Platform is powered by columnar analytics, optimized for cost-efficient storage, and built with open data standards.
www.influxdata.com
featured
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com
featured
  • birdcage

    Cross-platform embeddable sandboxing

    In addition to this, taking precautions to not install unknown packages is probably also extremely prudent. Towards that end, we've open sourced a cross platform embeddable sandbox for package installations. Source is freely available on Github (https://github.com/phylum-dev/birdcage) and we've added it into our tooling so you can run pip install ... and it'll limit access to disk, network, etc. during package installation.

  • InfluxDB

    Purpose built for real-time analytics at any scale. InfluxDB Platform is powered by columnar analytics, optimized for cost-efficient storage, and built with open data standards.

    InfluxDB logo
  • pypi-scan

    Discontinued Scan pypi for typosquatting

  • cli

    Command line interface for the Phylum API (by phylum-dev)

    Our CLI tool (also open source and free) will check for typosquats, dependency confusion, malicious code, vulnerabilities, etc. in your package dependencies. Works for pypi, npm, rubygems, maven, nuget and very recently golang and rust crates.

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts

  • The 36 tools that SaaS can use to keep their product and data safe from criminal hackers (manual research)

    18 projects | /r/SaaS | 22 May 2023
  • Top 11 DevOps Security Tools

    4 projects | dev.to | 30 Aug 2024
  • Lessons Learned from Scaling to Multi-Terabyte Datasets

    4 projects | news.ycombinator.com | 20 Jun 2024
  • Uv: Python Packaging in Rust

    9 projects | news.ycombinator.com | 15 Feb 2024
  • Ask HN: Show me your half baked project

    163 projects | news.ycombinator.com | 12 Oct 2023

Did you konow that Rust is
the 5th most popular programming language
based on number of metions?