CVE-2022-43306 - The Backdoor in d8s-timer & d8s-htm Exposes Python Users to Code Execution
In 2022, the Python ecosystem found itself again battling the threat of supply chain attacks after the discovery of a backdoor in the d8s-timer and
CVE-2022-43304 - The Hidden Threat in d8s-timer and Related Python PyPI Packages
Python’s open-source ecosystem is rich and vibrant, but it’s not immune from supply chain attacks. In October 2022, researchers revealed CVE-2022-43304, a serious