2021-03-01 UTC
# Hi friends, be careful pip installing packages - someone's just uploaded three and a half thousand packages to @PyPI that point to a malicious URL. A lot of the names are things like "numpyDjango" or other common typos ( twitter.com/_/status/1366263351685226499)