The original post: /r/cybersecurity by /u/gkpln3 on 2024-12-03 20:51:15.
I’ve just finished writing a small utility which helps you make sure you don’t install suspicious packages using pip.
The goal is to help developers manage the risk of blindly installing random packages, as these packages can pose a significant risk to the user since they literally run code on the host when installed.
It is very simple and open source, feel free to try and tell me what you think :)
Get it here:
You must log in or register to comment.