SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

The hackers compromised GitHub Action tags, then shifted to NPM, Docker Hub, VS Code, and PyPI, and teamed with Lapsus$.

OpenAI is acquiring open source Python tool-maker Astral

OpenAI announced Thursday that it has entered into an agreement to acquire Astral, the company behind popular open source Python development tools such as uv, Ruff, and ty, and integrate the company ...

OpenAI to buy Python toolmaker Astral to take on Anthropic

March 19 (Reuters) - OpenAI said on Thursday it will acquire Python toolmaker Astral, as the ChatGPT ​owner looks to ...
The Hacker News

TeamPCP Backdoors LiteLLM Versions 1.82.7–1.82.8 via Trivy CI/CD Compromise

Malicious LiteLLM 1.82.7–1.82.8 via Trivy compromise deploys backdoor and steals credentials, enabling Kubernetes-wide ...

How to Use Claude to Turn Your Handwriting Into a Custom Font

It’s a great, easy way to turn your handwriting into a font, but you can use it to create any typeface you can imagine as ...
FXEmpire.com

Oil News: API and EIA in Focus as IEA Projects Oversupply, Demand Outlook Softens

WTI crude holds steady after a sharp sell-off from $62.92 to $57.68, but bearish momentum still dominates. Crude faces resistance at $59.91 Fibonacci level, with 50-day and 200-day moving averages ...