GitHub

Current pip 25.2 and CVE-2025-8869 break CI pipelines

Following up on comment #13522 (comment) and the discussion there, I wanted to open this issue as @notatallshaw asked. @notatallshaw […] if you have any impact please open a new GitHub issue and we ...
GitHub

Withdrawn Advisory: Python-Future Module Arbitrary Code Execution via Unintended Import of test.py

This score calculates overall vulnerability severity from 0 to 10 and is based on the Common Vulnerability Scoring System (CVSS). Attack Vector: This metric reflects the context by which vulnerability ...