conda-forge-webservices 安全漏洞

conda-forge-webservices is a conda-forge open source web application deployed to run condaforge management commands and linting. A security vulnerability exists in versions of conda-forge-webservices prior to 2025.4.10 that stems from a competitive condition and could lead to the release of a...

PYSEC-2022-251

The spam project on PyPI was taken over via user account compromise via a phishing attack and a new malicious release made which contained code which some environment variables and downloaded and ran malware at install time...

PYSEC-2022-252

The deep-translator project on PyPI was taken over via user account compromise via a phishing attack and a new malicious release made which contained code which some environment variables and downloaded and ran malware at install time...

PT-2022-37331 · Pypi · Deep-Translator

Name of the Vulnerable Software and Affected Versions: deep-translator affected versions not specified Description: The deep-translator project on PyPI was compromised through a phishing attack, resulting in a malicious release that downloads and runs malware at install time by accessing some...