Hallo zusammen,
sofern nicht selber schon gesehen/-lesen hier [0] FYI
"Revival Hijack supply-chain attack threatens 22,000 PyPI packages"
--> "... To mitigate the threat, users and organizations can use package pinning to stay on specified, known to be trustworthy versions, verify package integrity, audit its contents, and look out for changes in package ownership or atypical update activity. ..."
VG
Bernd
[0] https://www.bleepingcomputer.com/news/security/revival-hijack-supply-chain-a...