近日，人工智能领域发生了一起震动全球开发者的安全事件。作为AI开发核心枢纽的LiteLLM网关遭遇供应链投毒攻击，大量使用者的密钥与敏感信息被窃取。这一事件被业界称为“教科书级别的供应链攻击”，其影响范围之广、危害程度之深，再次暴露出当前AI供应链体系的安全隐患。 LiteLLM作为AI网关，能够代理100多种大语言模型（LLM）的API，被广泛应用于AI编程与服务编排场景。目前其在GitHub上 ...

Malicious LiteLLM 1.82.7–1.82.8 via Trivy compromise deploys backdoor and steals credentials, enabling Kubernetes-wide ...

这是一件极其严肃的软件安全事件。 今天，Karpathy 发长推文警告全部开发者注意，GitHub 超过 4 万星，月下载量达 9700 万次的 Python 库 LiteLLM 在 PyPI 上被投毒。 首先提请各位开发者检查自己的 LiteLLM ...

Use Playerctl, Python, and Conky timer to create a 'now playing' Spotify desktop widget.

Not everyone can declare themselves “benevolent dictator for life” of a company, but such was the nature of Guido van Rossum, the Dutch programmer who invented an entire programming language from ...

Abstract: Conformance checking techniques compare process models of organizational behavior with observed process executions to reveal their deviations. Traditional alignments concern individual ...

Send a note to Doug Wintemute, Kara Coleman Fields and our other editors. We read every email. By submitting this form, you agree to allow us to collect, store, and potentially publish your provided ...

There’s more than one way to thread (or not to thread) a Python program. We point you to several threading resources, a fast new static type checker from Astral, a monkey patch for Pandas that adds ...

Abstract: Most companies exploit information systems to manage their business processes. Logs generated by such systems might be used to automatically learn models of such processes, e.g. for analysis ...

An experimental ‘no-GIL’ build mode in Python 3.13 disables the Global Interpreter Lock to enable true parallel execution in Python. Here’s where to start. The single biggest new feature in Python ...

Despite miles of ground covered as we drove through the Everglades under the cover of darkness, it was impossible to ignore the fact that we hadn’t spotted a single mammal. The expansive wetlands in ...