On Sun, Sep 8, 2024 at 6:12 PM Marc Culler wrote:
>
> I think something else is causing Sage NumberField objects to leak memory
> (i.e. to not be deallocated) in your example. The fact that both issues
> involve growth of the PARI heap does not mean that both issues have the same
> cause. The
https://www.theregister.com/2024/09/09/predator_spyware_trump_crypto/
Mon 9 Sep 2024 // 02:00 UTC
Pasting from the above:
PyPI hijack exposes 22K+ packages to takeover attacks
Security researchers monitoring open source packages have spotted
nasty folk waiting for a package to be deleted and re
On 2024-09-09 12:43:12, Georgi Guninski wrote:
>
> The DevOps and security firm estimates there are around 22,000
> packages in PyPI vulnerable to a revive hijack attack, and the
> researchers noted they've already spotted the technique being used in
> the wild to infect the pingdomv3 package.
Sol
The PR does not include any explanation as to why the changes to
pyproject.toml are necessary, nor does it provide any guidance on how to
test them. I used the standard configure process (now also with the
system-site-packages switch) followed by make, both with and without these
changes, an
The proposed change looks very reasonable to me - thank you for working on
that!
Regarding Kwankyu's remark:
> A practical issue related with this discussion is as follows. If a member
B is blocked by another member A, and there is a PR created by A. Then does
B still (1) have the full rights
