#Pypi malware

Open Source Package Attack Exposes Developer Credentials

A compromised open source Python package exposed developer credentials, cloud keys, API tokens, and SSH keys in a major software supply-chain attack