A software security engineer has identified 12 Python libraries uploaded on the official Python Package Index (PyPI) that contained malicious code. The 12 packages have been discovered in two separate scans by a security engineer who goes online by the name of Bertus, and have long been removed from PyPI before this article's publication. All packages were put together and worked following a similar pattern. Their creator(s) copied the code of popular packages and created a new library, but with a slightly modified name. For example, four packages (diango, djago, dajngo, djanga) were misspellings of Django, the name of a very popular Python framework.
The Python ecosystem is vast and far-reaching in both scope and depth. Starting out in this crazy, open-source forest is daunting, and even with years of experience, it still requires continual effort to keep up-to-date with the best libraries and techniques. This report helps you explore some of the lesser-known Python libraries and tools, including third-party modules and several extremely useful tools in the standard library that deserve more attention. What makes this collection different from other lists online? Author Caleb Hattingh diligently spent time finding and testing hidden gems that fit several criteria: easy to install and use, cross-platform, applicable to more than one domain, and not yet popular but likely to become so soon.
Python is one of the world most popular and widely used high-level, general-purpose Language. There are many big organization using python for software development because of its versatile features. It provide extensive support of libraries. Scrappy is widely used Python web scraping library. It is used for creating crawling programs.