Microsoft

From package to postinstall payload: Inside the Mastra npm supply chain compromise by Sapphire Sleet

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend ...

New Shai-Hulud attack trojanizes 19 science-focused PyPI packages

Hackers compromised 19 packages on the PyPI, collectively downloaded hundreds of thousands of times, in a new Shai-Hulud ...
GitHub

ArchUnitPython - Architecture Testing

Enforce architecture rules in Python projects. Check for dependency directions, detect circular dependencies, enforce coding standards and much more. Integrates with pytest and any other testing ...
GitHub

pappasam/jedi-language-server

MAINTENANCE MODE: we suggest that new users consider the successor to Jedi: A Mypy-Compatible Python Language Server Built in Rust - Zuban The following instructions show how to use ...