PyPI package with 1.1M monthly downloads hacked to push infostealer

An attacker pushed a malicious version of the popular elementary-data package Python Package Index (PyPI) to steal sensitive ...
CSO Online

Critical flaw in Marimo Python notebook exploited within 10 hours of disclosure

A single unauthenticated connection gives attackers a full shell; credential theft observed in under three minutes on honeypot servers.
GitHub

Python STC ReST API Client: stcrestclient

The stcrestclient package provides the stchttp ReST API library module. This allows simple function calls, nearly identical to those provided by StcPython.py, to be used to access TestCenter server ...
GitHub

"Blast Session Performance Monitor" Free, Zero-Dependency PowerShell Tool

TL;DR: A single PowerShell script that collects 18+ Horizon Blast performance metrics in real-time, stores 8 hours of history, and serves a live web dashboard — no installation, no agents, no ports ...