On Sun, Jan 30, 2022 at 12:44 PM Ralf Gommers
wrote:
>
>
> On Mon, Jun 14, 2021 at 3:22 AM Charles R Harris <
> charlesr.har...@gmail.com> wrote:
>
>>
>>
>> On Sun, Jun 13, 2021 at 10:47 AM Ralf Gommers
>> wrote:
>>
>>> Hi all,
>>>
>>> FYI, I noticed this package that claimed to be maintained by
Here's a story about how malicious pypi packages help break into corporate
networks.
It is not necessarily the goal this particular person was aiming for. Just
a side note.
"Dependency Confusion: How I Hacked Into Apple, Microsoft and Dozens of
Other Companies"
https://medium.com/@alex.birsan/depen
On Mon, Jun 14, 2021 at 3:22 AM Charles R Harris
wrote:
>
>
> On Sun, Jun 13, 2021 at 10:47 AM Ralf Gommers
> wrote:
>
>> Hi all,
>>
>> FYI, I noticed this package that claimed to be maintained by us:
>> https://pypi.org/project/numpy-aarch64/. That's not ours, so I tried to
>> contact the autho
