all InfoSec news
Our audit of PyPI
Malware Analysis, News and Indicators - Latest topics malware.news
By William Woodruff
This is a joint post with the PyPI maintainers; read their announcement here!
This audit was sponsored by the Open Tech Fund as part of their larger mission to secure critical pieces of internet infrastructure. You can read the full report in our Publications repository.
Late this summer, we performed an audit of Warehouse and cabotage, the codebases that power and deploy PyPI, respectively. Our review uncovered a number of findings that, while …
announcement audit critical fund infrastructure internet internet infrastructure maintainers mission publications pypi report repository sponsored summer tech