Microsoft

Malicious npm packages abuse dependency confusion to profile developer environments

A dependency confusion campaign leveraged 33 malicious npm packages to collect reconnaissance data from developer and build environments. This report details the attack chain, observed tradecraft, and ...
GitHub

A Python package for downloading historical data published by the Australian Energy Market Operator (AEMO)

Interested in contributing? Check out the contributing instructions, which also includes steps to install nemosis for development. Please note that this project is released with a Code of Conduct. By ...
GitHub

Python package for the evaluation of odometry and SLAM

This package provides executables and a small library for handling, evaluating and comparing the trajectory output of odometry and SLAM algorithms. What it's not: a 1-to-1 re-implementation of a ...
PCMag on MSN

OpenAI Tells Mac Users to Update Apps After Software Supply Chain Attack

OpenAI was hit by a supply chain attack involving hackers publishing a malicious version of Tanstack software used for web development.