BestHub
Sign in
Tagged articles
29 articles
Page 1 of 1
Black & White Path
Black & White Path
May 11, 2026 · Information Security

How OceanLotus weaponized PyPI to deliver ZiChatBot malware using Zulip as C2

OceanLotus (APT32) hijacked three innocuous PyPI packages—uuid32-utils, colorinal, and termncolor—to drop the ZiChatBot malware, which persists via registry or crontab and communicates through the Zulip public chat REST API, making its traffic indistinguishable from legitimate developer traffic and evading network‑based detection.

Dependency PoisoningOceanLotusPyPI
0 likes · 11 min read
How OceanLotus weaponized PyPI to deliver ZiChatBot malware using Zulip as C2
Shi's AI Notebook
Shi's AI Notebook
Mar 25, 2026 · Information Security

LiteLLM Compromised in 46 Minutes: Inside the 47,000‑Download Supply‑Chain Attack

In March 2026, attackers hijacked the official PyPI maintainer account of LiteLLM, released two malicious versions that were downloaded 46,996 times in 46 minutes, exfiltrated credentials, launched a fork‑bomb, and demonstrated how unpinned dependencies and .pth files can turn a simple package install into a full‑scale supply‑chain breach.

KubernetesLiteLLMPyPI
0 likes · 12 min read
LiteLLM Compromised in 46 Minutes: Inside the 47,000‑Download Supply‑Chain Attack
Python Programming Learning Circle
Python Programming Learning Circle
Nov 10, 2025 · Fundamentals

What Are the 22 Most Popular Python Packages and Why They Matter

This article examines the 22 most‑used Python packages on PyPI, explaining their core functionality, download statistics, and typical use cases—from HTTP clients like urllib3 to compatibility tools like six, security libraries such as certifi and rsa, and utility modules for dates, YAML, and concurrency—providing developers with a concise guide to essential Python tooling.

DevelopmentPackagesPyPI
0 likes · 20 min read
What Are the 22 Most Popular Python Packages and Why They Matter
Fun with Large Models
Fun with Large Models
May 23, 2025 · Backend Development

Rapidly Build a Streamable HTTP MCP Server with the Official MCP SDK – Full End‑to‑End Guide

This article walks through the complete process of creating, testing, and publishing a streamable HTTP MCP server using the official MCP SDK, covering environment setup with Anaconda and uv, project structuring, code implementation, tool integration, Inspector testing, PyPI deployment, and client verification with CherryStudio.

ASGICherryStudioMCP
0 likes · 16 min read
Rapidly Build a Streamable HTTP MCP Server with the Official MCP SDK – Full End‑to‑End Guide
php Courses
php Courses
May 13, 2025 · Backend Development

How to Package and Publish a Python Project to PyPI

This tutorial explains why Python projects need packaging, introduces essential tools like setuptools, wheel, and twine, shows the recommended project layout, walks through creating a setup.py file, building distribution files, testing locally, uploading to PyPI, and handling version updates and common questions.

PyPITwinepackaging
0 likes · 8 min read
How to Package and Publish a Python Project to PyPI
21CTO
21CTO
Oct 28, 2024 · Backend Development

What Are the Top 5 Python Packages on PyPI? Surprising Rankings Revealed

This article reveals the surprising top‑five Python packages on PyPI, explains why popular libraries like NumPy and Pandas are not among them, and provides installation details and key features for each of the leading packages such as boto3, urllib3, botocore, aiobotocore, and Requests.

BackendBoto3PyPI
0 likes · 7 min read
What Are the Top 5 Python Packages on PyPI? Surprising Rankings Revealed
Test Development Learning Exchange
Test Development Learning Exchange
Jun 24, 2023 · Fundamentals

Overview of Python Package Management Systems

This article provides a comprehensive overview of Python package management tools—including PyPI, setuptools, pip, virtualenv, and conda—explaining their purposes, core features, and basic usage commands for creating, sharing, and managing Python packages and environments.

CondaPyPIPython
0 likes · 5 min read
Overview of Python Package Management Systems
Python Programming Learning Circle
Python Programming Learning Circle
May 22, 2023 · Fundamentals

Top 15 Most Downloaded Python Packages on PyPI and Their Uses

This article reviews the fifteen Python packages with the highest download counts on PyPI over the past year, explaining each library's purpose, key features, typical use‑cases, and providing code examples to illustrate how they simplify tasks such as HTTP requests, compatibility, cloud interaction, configuration, security, and data handling.

PackagesPyPIPython
0 likes · 15 min read
Top 15 Most Downloaded Python Packages on PyPI and Their Uses
21CTO
21CTO
May 26, 2022 · Information Security

How a Malicious PyPI Package Stole Secrets and What It Means for PyPI Security

Recent investigations reveal that the malicious PyPI package “ctx” harvested environment variables, encoded them in base64, and sent them to a Heroku endpoint, while attackers also hijacked the package’s maintainer account via domain takeover, highlighting serious vulnerabilities in PyPI’s package and account security processes.

Domain HijackingPyPIPython
0 likes · 5 min read
How a Malicious PyPI Package Stole Secrets and What It Means for PyPI Security
21CTO
21CTO
Jan 19, 2022 · Fundamentals

Why Developers Choose the 22 Most Downloaded Python Packages

This article examines the 22 Python packages with the highest download counts on PyPI, explaining their functionality, popularity, and interdependencies, and provides practical code examples and usage tips, helping developers understand which libraries dominate the ecosystem and how they can be leveraged in real‑world projects.

PyPIlibrary overviewpopular packages
0 likes · 21 min read
Why Developers Choose the 22 Most Downloaded Python Packages
Python Programming Learning Circle
Python Programming Learning Circle
Jun 18, 2020 · Fundamentals

The 22 Most Used Python Packages in the World

This article surveys the 22 most downloaded Python packages on PyPI, explains their primary functions, shows typical usage examples, and discusses why they are so popular across various development scenarios, providing practical insights for Python developers.

DevelopmentPackagesPyPI
0 likes · 20 min read
The 22 Most Used Python Packages in the World
MaGe Linux Operations
MaGe Linux Operations
Dec 17, 2017 · Backend Development

How to Build and Publish Your Own Python Library to PyPI

This guide walks you through setting up a Python project structure, creating essential packaging files, organizing modules into packages, building distribution archives, and finally uploading the library to PyPI using Twine, enabling others to install it via pip.

Library DevelopmentPyPIPython
0 likes · 6 min read
How to Build and Publish Your Own Python Library to PyPI