StatisticsGlobe (@StatisticsGlobe@mastodon.social)
You can still get access to all Statistics Globe Hub March modules by registering before the end of the month.
More info: https://statisticsglobe.com/hub
#Statistics #DataScience #RStats #Python #DataVisualization #AI
Show Original Post
winbuzzer (@winbuzzer@mastodon.social)
https://winbuzzer.com/2026/03/25/mozilla-launches-cq-stack-overflow-for-ai-agents-xcxwbn/
Mozilla Launches Cq, a 'Stack Overflow for AI Agents'
#AI #Mozilla #MozillaCQ #AIAgents #AgenticAI #OpenSource #OpenSourceAI #AICoding #Coding #AISecurity #Developers #DeveloperTools #SoftwareDevelopment #MCP #Python #StackOverflow
Show Original Post
techbot (@techbot@social.raytec.co)
Malicious PyPI Package - LiteLLM Supply Chain Compromise
A malicious supply chain attack has been discovered in the Python Package Index package litellm version 1.82.8. The compromised package contains a malicious .pth file that executes automatically when the Python interpreter starts, without requiring explicit import. This file, located in site-packages/, exfiltrates sensitive information including environment variables, SSH keys, and cloud credentials to an attacker-controlled server. The payload is double base64-encoded to evade basic static analysis. PyPI administrators have quarantined the project to limit its spread. Users are advised to check for the malicious file, rotate all potentially exposed credentials, and audit their PyPI publishing process. The attack is attributed to TeamPCP and is actively exploited in the wild.
Pulse ID: 69c3bb2520934c9e0b4e5dca
Pulse Link: https://otx.alienvault.com/pulse/69c3bb2520934c9e0b4e5dca
Pulse Author: AlienVault
Created: 2026-03-25 10:38:29
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#Cloud #CyberSecurity #InfoSec #OTX #OpenThreatExchange #PyPI #Python #RAT #SSH #SupplyChain #Troll #bot #AlienVault
Show Original Post
techbot (@techbot@social.raytec.co)
Supply Chain Attack: Malicious PyPI Packages
TeamPCP has launched a supply chain attack targeting LiteLLM, an open-source Python library used in 36% of cloud environments. Malicious versions 1.82.7 and 1.82.8 were published on PyPI, employing sophisticated techniques for payload delivery and persistence. The compromised packages exploit Python's .pth mechanism for stealthy execution across any Python process. The malware collects sensitive data including API keys, cloud credentials, and CI/CD secrets, encrypting and exfiltrating them to attacker-controlled domains. This attack follows TeamPCP's previous compromises of Aqua Security's Trivy and Checkmarx tools, highlighting an ongoing campaign against the open-source ecosystem. The incident underscores the potential for widespread impact and the need for vigilance in software supply chain security.
Pulse ID: 69c3bb29c62248c6ffd0b50c
Pulse Link: https://otx.alienvault.com/pulse/69c3bb29c62248c6ffd0b50c
Pulse Author: AlienVault
Created: 2026-03-25 10:38:33
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#Cloud #CyberSecurity #InfoSec #Malware #OTX #OpenThreatExchange #PyPI #Python #RAT #RCE #SupplyChain #Troll #bot #AlienVault
Show Original Post
habr (@habr@zhub.link)
Мой маленький мониторинг
Делюсь еще одной полезной штукой из личных разработок, на этот раз на тему мониторинга температуры в компьютере. ~120 строк на Python.
https://habr.com/ru/articles/1014900/
#мониторинг #x11 #python #python3 #freebsd #неуловимый_джо #виджет
Show Original Post
habr (@habr@zhub.link)
/tmp кончился — пишем виджет для qtile с предсказанием по тренду
qtile — тайловый оконный менеджер для Linux, целиком написанный на Python. Конфиг — тоже Python, с asyncio, доступом к procfs и вообще ко всему, что есть в системе. Я сижу на qtile уже почти 15 лет с одним и тем же конфигом, который потихоньку допиливаю, и что мне в нём нравится: панель оконного менеджера — удобное место для визуализации метрик, собранных из произвольных Python-скриптов.
https://habr.com/ru/articles/1014886/
#qtile #python #linux #disk_space #monitoring #linear_regression #wayland #tiling_wm #виджет #мониторинг_дисков
Show Original Post
habr (@habr@zhub.link)
Испанский в кармане: Архитектура Telegram-бота с локальным Whisper.cpp, AI-диалогами и оценкой произношения
Привет, Хабр! Меня зовут Vlad, я начинающий Python‑разработчик и энтузиаст изучения языков. Недавно я столкнулся с классической проблемой полиглота‑самоучки: учебники дают теорию, аудиокурсы — пассивное восприятие, но нет главного — обратной связи по произношению. Репетиторы дороги, а разговорные клубы требуют уровня, которого у меня еще не было. Я решил закрыть эту боль кодом. Моя цель была амбициозной: создать Telegram‑бота, который: 1. Слушает голосовые сообщения и распознает речь без дорогих облачных API. 2. Оценивает точность произношения в процентах, сравнивая с эталоном. 3. Поддерживает живой диалог через LLM, исправляя ошибки на лету. 4. Работает быстро и экономно на слабом VPS. В этой статье я подробно разберу архитектуру проекта, покажу, как интегрировать бинарный whisper.cpp в асинхронный aiogram 3.x, реализую алгоритм оценки речи и расскажу про управление состояниями (FSM). Под капотом — Python, нейросети и немного магии.
https://habr.com/ru/articles/1014888/
#Python #Telegram_Bot #Aiogram #Whisper #Speech_Recognition #Machine_Learning #NLP #Artificial_Intelligence #Асинхронность #Испанский_язык
Show Original Post
ehmatthes (@ehmatthes@fosstodon.org)
I've been working on dsd-scalingo, a django-simple-deploy plugin that automates deployment to Scalingo. I'm excited about Scalingo because they have a 30-day free trial that doesn't require a CC, with the bonus of being hosted in the EU.
With the scalingo CLI installed and authenticated, you can deploy a project in these three steps:
Show Original Post
villares (@villares@ciberlandia.pt)
I have built a new bundling of Portable Thonny IDE for #WIndows (it comes with #Python) with #py5 and some other libraries pre-installed (#shapely, #trimesh, #pymunk & etc.) it would help me if people could test it:
More about this (and example code to test!) at https://abav.lugaralgum.com/como-instalar-py5/index-EN.html
I would love to find someone with MacOS dev skills willing to volunteer re-packaging Thonny with py5 for MacOS
Show Original Post
why-genai-means-the-end-of-copyright-for-software-and-the-re-invention-of-open-source (@why-genai-means-the-end-of-copyright-for-software-and-the-re-invention-of-open-source@walledculture.org)
Why genAI means the end of copyright for software and the re-invention of open source
Most of the discussions about the impact of the latest generative AI systems on copyright have centred on text, images and video. That’s no surprise, since writers, artists and film-makers feel very strongly about their creations, and members of the public can relate easily to the issues that AI raises for this kind of creativity. But there’s another creative domain that has been massively […]
#ai #chardet #circumvention #claude #cleanRoom #danBlanchard #genai #gnu #gpl #lgpl #licensing #markPilgrim #mit #nebraskaProblem #openSource #openSource20 #python #richardStallman #software #unix https://walledculture.org/why-genai-means-the-end-of-copyright-for-software-and-the-re-invention-of-open-source/
Show Original Post
dan_nanni (@dan_nanni@mastodon.social)
Python is effective for building networking apps as it provides high level socket abstractions, mature protocol libraries, and event driven frameworks
Here are useful Python libraries for networking app development 😎👇
Find high-res pdf ebooks with all my networking related infographics at https://study-notes.org
#python #cloudengineer #networking #networkengineer #pythonprogramming
Show Original Post
nyamandi (@nyamandi@mastodon.social)
Still new to Android dev but loving it . Maybe a word to the begginer.
#android #kotlin #jetbrains #python #javascript
Show Original Post