The Security Ledger

Technology’s “Upside Down”? Software Supply Chain

Stranger Things concept of the “Upside Down” is a useful way to think about the risks lurking in the software we all rely on.
The Hacker News

Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan

Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.
GitHub

A Python package for the identification, characterization and comparison of spatial clusters from spatial omics data.

Spatial clustering (or spatial domain identification) determines cellular niches characterized by specific admixing of these populations. It assigns cells to clusters based on both their intrinsic ...

Pandas 3.0 brings unified string type and performance optimization

With the PyArrow library installed, pandas 3.0 interprets string columns automatically as the str data type instead of NumPy- ...
GitHub

Python 3.12 backport for Debian 12 bookworm

The aim of this project is to provide a Python 3.12 backport to Debian bookworm. Packages are of course much better manageable than compiling the source from scratch. In my opinion it is also more ...