PyTorch Lightning project quarantined by PyPI(pypi.org)
pypi.org
PyTorch Lightning project quarantined by PyPI
https://pypi.org/project/lightning/
4 comments
Malicious versions are 2.6.2 and 2.6.3: https://socket.dev/blog/lightning-pypi-package-compromised
That's really bad.
Supply chain attack? Does anyone have more info?