List of Previously Submitted Malicious Packages?

Hi. This might all ready exist, but is there a list of previously submitted malicious packages? We track installed packages, and it would be of interest to be able to compare our list to malicious packages that have made it into production so that we could address them and remove them.

Welcome to the Python Discourse! Just FYI, don’t forget to search for previous threads, and make sure your post is in the right category :slightly_smiling_face:

This has been requested before, e.g.

There is an open issue to do this…

Which then evolved into this proposed approach for handling it:

1 Like