The Hacker News

Compromised dYdX npm and PyPI Packages Deliver Wallet Stealers and RAT Malware

Compromised dYdX npm and PyPI packages delivered wallet-stealing malware and a RAT via poisoned updates in a software supply chain attack.
GitHub

ryp: R inside Python

running R code inside Python quickly transferring huge datasets between Python (NumPy/pandas/polars) and R without writing to disk interactively working in both languages at the same time ...
GitHub

A tool for running a PEP-503 simple Python package repository, including features such as dist metadata (PEP-658) and JSON API (PEP-691)

The simple-repository-server is designed to be used as a library, but also includes a convenient command line interface for running a simple repository service: If ...