Paul Ganssle
Follow

PSA: Someone has apparently typo-squatted a package with a similar name to dateutil on PyPI and is serving malicious code on it!

Please check that you depend on `python-dateutil`, no other variants. (The malicious package is `python3-dateutil`).

github.com/dateutil/dateutil/i

· · Twidere for Android · 2 · 18 · 6
zack wol berg

@pganssle paging @brainwane who might be able to light a fire under pypi

0
Stewart Russell

@pganssle to confuse debian users, dateutil is python3-dateutil there …

0
Sign in to participate in the conversation
Qoto Mastodon

QOTO: Question Others to Teach Ourselves
An inclusive, Academic Freedom, instance
All cultures welcome.
Hate speech and harassment strictly forbidden.

Trending now

Resources

Developers

What is Mastodon?

qoto.org

More…