They have written about it on github to my question:
Trivvy hacked (https://www.aquasec.com/blog/trivy-supply-chain-attack-what-...) -> all circleci credentials leaked -> included pypi publish token + github pat -> | WE DISCOVER ISSUE | -> pypi token deleted, github pat deleted + account removed from org access, trivvy pinned to last known safe version (v0.69.3)
What we're doing now:
Block all releases, until we have completed our scans
Working with Google's mandiant.security team to understand scope of impact
Reviewing / rotating any leaked credentials
Virtual Keys is an Enterprise feature. I am not going to pay for something like this in order to provide my family access to all my models. I can do without cost control (although it would be nice) but I need for users to be able to generate a key and us this key to access all the models I provide.
I don’t believe it is an enterprise feature. I did some testing on Bifrost just last month on a free open source instance and was able to set up virtual keys.
First line of defense is the git host and artifact host scrape the malware clean (in this case GitHub and Pypi).
Domains might get added to a list for things like 1.1.1.2 but as you can imagine that has much smaller coverage, not everyone uses something like this in their DNS infra.
This threat actor is also using Internet Computer Protocol (ICP) "Canisters" to deliver payloads. I'm not too familiar with the project, but I'm not sure blocking domains in DNS would help there.
What happened to Poetry? did it just not gain enough traction? I was under the impression it was the hot new thing a few years back then uv comes out of nowhere.
I thought the same thing. Just a few years ago, everyone here was proclaiming Poetry was great, the python ecosystem was finally tamed, pip/conda/setuptools was dead, and every project and developer needs to adopt it.
Now it’s just a has-been. The churn in python is incredible.
Yeah. There was a wave of "rebuild it in Rust" companies and my complaint with all of them is that they became largely from-spec reimplementations of existing tools with little imagination of their own. The Rust projects are a fraction of the age of the scripted ones and they already feel ossified.
I'm not just talking about Astral here, I'm talking about the JS equivalents too like Biome and VoidZero which basically took the existing ossified architectures and made them gospel -_-
That's not a good interpretation of Astral and uv.
uv is way more than a rewrite in Rust of Poetry or pip - it has a metric ton of smart design decisions that are independent of the language it was written in, both in terms of what it does and how it speeds things up under the hood.
(machine translation)
How would this ever work with a whitelist? did you even read the post?
reply