fromCSO Online1 day agoMalicious PyPI package targets Chimera users to steal AWS tokens, CI/CD secretsThe detection of harmful packages, such as chimera-sandbox extensions, on PyPI highlights the significant and widespread risk posed by software supply chain attacks.Information security