Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.
This case study examines how vulnerabilities in AI frameworks and orchestration layers can introduce supply chain risk. Using ...
The Register on MSN
Popular Python libraries used in Hugging Face models subject to poisoned metadata attack
The open-source libraries were created by Salesforce, Nvidia, and Apple with a Swiss group Vulnerabilities in popular AI and ML Python libraries used in Hugging Face models with tens of millions of ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results