RE: https://fosstodon.org/@pypi/116335453780319113

rapport d'incident par @miketheman & @sethmlarson sur la corruption de #liteLLM & #Telnyx via #Trivy : https://blog.pypi.org/posts/2026-04-02-incident-report-litellm-telnyx-supply-chain-attack/

Conseils :
- délai de précaution dans la montée de version des dépendances
-- pip.conf
[install]
uploaded-prior-to = P3D
-- uv.toml / pyproject.toml
[tool.uv]
exclude-newer = "P3D"
- utiliser un lockfile pour les dépendances transitives
- publication : par le trusted publishing, surveiller les PR touchant aux workflows de CI

#Python #PyPI #cybersécurité #supplychain

#TIL: There is a UK Ministry of Justice #PyPi account: https://pypi.org/user/ministryofjustice/

Discovered because I was wondering if there is a #Python library for UK public holiday data, as want something that updates itself really, and ideally isn't some sort of live API (which would be daft)... I mean, probability is fairly high we'll have some random extra one sooner rather than later when Charlie pops his clogs.

There is such a library, and the Minstry of Justice is one of its maintainers: https://pypi.org/project/govuk-bank-holidays/

Whodathunkit... (assuming this is a real official account.)

LiteLLM PyPI 감염 사건, AI 개발 공급망 공격이 작동하는 방식

https://aisparkup.com/posts/10533

AI 생산성 혁명이라는데, 데이터는 왜 조용한가

https://aisparkup.com/posts/10506

While I have to deal with all manner of garbage & malware throughout my workday, the redeeming part is that it's pushed me to improve my handling tooling.
So when a bigger issue happens, the tooling is super helpful with analysis and remediation.

#OpenSource #Python #SupplyChain #Security #PyPI #kaizen

TeamPCP’s Telnyx Attack Marks a Shift in Tactics Beyond LiteLLM

TeamPCP launched a sophisticated attack on the Telnyx Python SDK, publishing malicious versions 4.87.1 and 4.87.2 to PyPI. The attack represents an evolution from their previous LiteLLM campaign, incorporating WAV-based steganography, split-file code injection, and expanded platform support. The payload, activated on import, uses stealthy techniques to download and execute credential-stealing malware across Linux, macOS, and Windows systems. Key changes include the use of audio steganography to hide malicious code, improved evasion through split-file injection, and the addition of Windows support with Startup folder persistence. The attackers shifted from HTTPS to plaintext HTTP infrastructure, potentially exposing their activities to network monitoring. Organizations are advised to downgrade to the last clean version and treat affected systems as compromised.

Pulse ID: 69cabb96c63dbeb412355267
Pulse Link: https://otx.alienvault.com/pulse/69cabb96c63dbeb412355267
Pulse Author: AlienVault
Created: 2026-03-30 18:06:14

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CodeInjection #CyberSecurity #HTTP #HTTPS #ICS #InfoSec #Linux #Mac #MacOS #Malware #OTX #OpenThreatExchange #PyPI #Python #RAT #Steganography #Windows #bot #AlienVault

Python packaging question:

I have a package on PyPI that depends on keras. Keras can work with either jax, torch, or tensorflow, but I want to let the user in charge of which of those they install.

So, currently, keras is in my default dependencies, and I have three optional feature sets: one with each backend, which I can install with the brackets syntax.

Which means that the "plain" installation is non-functional, because it lacks a backend library.

So, I am wondering if there would be a way to make one of the backends the default one, while still keeping the possibility to not install it (and install another one instead) in case the installation is difficult on a user's machine?

I think I am thinking of something similar to Rust's default features, which are installed by default but can be not installed if requested

#Python #PyPI

Backdoored #Telnyx #PyPI package pushes #malware hidden in #WAV #audio

https://www.bleepingcomputer.com/news/security/backdoored-telnyx-pypi-package-pushes-malware-hidden-in-wav-audio/

#cybersecurity

Telnyx Python SDK Compromised to Deliver Credential-Stealing Malware

A supply chain attack affecting the telnyx Python package on PyPI has been identified. Malicious versions 4.87.1 and 4.87.2 contained embedded credential-harvesting malware. The attack employs a three-stage runtime chain on Linux/macOS using audio steganography for delivery, in-memory execution of a data harvester, and encrypted exfiltration. On Windows, it drops a persistent binary in the Startup folder. The malware uses sophisticated techniques including fileless execution, hybrid encryption, and anti-forensics measures. The threat actor, TeamPCP, demonstrates high operational security and cryptographic awareness. Developers are advised to audit environments, rotate credentials, and check for indicators of compromise.

Pulse ID: 69c785cfafa051ecd9a83cd7
Pulse Link: https://otx.alienvault.com/pulse/69c785cfafa051ecd9a83cd7
Pulse Author: AlienVault
Created: 2026-03-28 07:39:59

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #Encryption #ICS #InfoSec #Linux #Mac #MacOS #Malware #OTX #OpenThreatExchange #PyPI #Python #RAT #Steganography #SupplyChain #Windows #bot #developers #AlienVault