A code backdoor in a package on the Python Package Index demonstrates the importance of verifying code brought in from code repositories.

from Dark Reading: https://ift.tt/2Sokljt
via IFTTT