Python Articles, Tutorials & News

Mitigating Install Time Supply Chain Attacks in Python

Several supply chain attacks, notably in the Python and Javascript ecosystem, exploit install time hooks to perform malicious activity 1 2. Install time hooks allow running arbitray code before or after package installation. Since attacks utilizing instal…

Read more »