from Hacker News

Highly invasive backdoor snuck into open source packages targets developers

by carride on 11/8/23, 7:27 PM with 2 comments

• by mdaniel on 11/8/23, 7:47 PM

  the site guidelines state <https://news.ycombinator.com/newsguidelines.html> that original sources are preferred over the hot-takes of hundreds of rando sites

  https://news.ycombinator.com/item?id=38195047

  also, "into open source PYTHON packages" would allow more targeted pearl-clutching