This is today's edition of The Download, our weekday newsletter that provides a daily dose of what's going on in the world of technology.

Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.

Proven expertise co-develops projects or delivers turnkey solutions to enable new business capabilities using the LIttleHorse Saddle Command Center. LAS VEGAS, Jan. 27, 2026 /PRNewswire-PRWeb/ -- ...

On Friday, OpenAI engineer Michael Bolin published a detailed technical breakdown of how the company’s Codex CLI coding agent ...

According to the firm’s latest supply chain security report, there was a 73% increase in detections of malicious open-source packages in 2025. The past year also saw a huge jump in the scope of ...

Koi security researchers found that when NPM installs a dependency from a Git repository, configuration files such as a ...

An exercise-driven course on Advanced Python Programming that was battle-tested several hundred times on the corporate-training circuit for more than a decade. Written by David Beazley, author of the ...

January 20, 2026: We added a new Jujutsu Infinite code to our list. The most recent freebie offers you a very generous 50 spins to use in-game. Lots of people are on the hunt for Roblox Jujutsu ...

AgentRun is a Python library that makes it easy to run Python code safely from large language models (LLMs) with a single line of code. Built on top of the Docker Python SDK and RestrictedPython, it ...

Python’s new JIT compiler might be the biggest speed boost we’ve seen in a while, but it’s not without bumps. Get that news ...

A phishing campaign targeting carefully selected “high-value” corporate employees has been using LinkedIn direct messages to deliver weaponized downloads, highlighting how criminals are shifting away ...

Once up and running, that malicious DLL file pops a Python interpreter onto the system, which runs a script to create a ...