腾讯网

Anthropic向Python基金会投资150万美元:一场关于回馈与商业的讨论

Anthropic宣布与Python软件基金会达成为期两年的合作,投资150万美元支持Python生态系统安全建设。这笔资金将用于CPython和PyPI的关键安全升级,同时支撑基金会在Python语言、生态和全球社区方面的核心工作。
Bleeping Computer

PyPI urges users to reset credentials after new phishing attacks

The Python Software Foundation has warned victims of a new wave of phishing attacks using a fake Python Package Index (PyPI) website to reset credentials. Accessible at pypi.org, PyPI is the default ...

Anthropic Backs Python Security With $1.5 Million PSF Partnership

Anthropic committed $1.5 million to the Python Software Foundation to strengthen PyPI and CPython security, targeting ...

Anthropic finds $1.5 million to help Python Foundation improve security

The Python Software Foundation (PSF) has an extra $1.5 million heading its way, after AI upstart Anthropic entered into a ...
新浪网

Python第三方库PyPI现恶意木马风险 开发者务必注意安装

据Checkmarx披露,Python第三方库PyPI存在安全风险。该平台存在名为BlazeStealer的恶意木马,黑客今年1月至10月在PyPI平台上发布了8 ...
ZDNet

Twelve malicious Python libraries found and removed from PyPI

A software security engineer has identified 12 Python libraries uploaded on the official Python Package Index (PyPI) that contained malicious code. The 12 packages have been discovered in two separate ...
腾讯网

拒绝美国政府150万美元拨款!Python基金会“硬刚”:这些条件我们 ...

Python 作为全球最流行的编程语言之一,支撑着无数开源项目和商业应用。但正因其生态系统庞大而活跃,安全风险也随之增加,尤其是供应链方面的潜在威胁。 为应对这些挑战,Python 软件基金会(PSF)此前向美国国家科学基金会(NSF)提交了一份价值 150 万 ...
Dark Reading

One-Third of Popular PyPI Packages Mistakenly Flagged as Malicious

The scanners tasked with weeding out malicious contributions to packages distributed via the popular open source code repository Python Package Index (PyPI) create a significant number of false alerts ...