Cybersecurity company Trellix announced Wednesday that a known Python vulnerability puts 350,000 open-source projects and the applications that use them at risk of device take over or malicious code ...

OpenAI announced Thursday that it has entered into an agreement to acquire Astral, the company behind popular open source Python development tools such as uv, Ruff, and ty, and integrate the company ...

On Friday, the Python Package Index (PyPI), the official repository of third-party open-source Python projects announced plans to mandate two-factor authentication requirement for maintainers of ...

OpenAI Group PBC today announced plans to acquire Astral Software Inc., a startup with a set of widely used Python development tools. The terms of the deal were not disclosed. Astral’s development ...

In a move that’s set to introduce a fresh level of security for the world’s favorite programming language, the Python Package Index (PyPI), the official repository of third party open-source Python ...

A growing body of academic research warns that AI-assisted “vibe coding,” where language models assemble software from ...

A 15-year-old vulnerability in the open source Python programming language is still finding its way into live code, with the result that over 350,000 projects are at risk of potential supply chain ...

Python 3.15 has introduced a feature to allow “lazy” module imports, where an imported module isn’t actually evaluated until the first time it’s used. For modules that take a long time to initialize ...

Compliance continues to drive adoption of trusted open source: We saw the same themes from December present here, underscored ...