Med-Mastodon

Snakemake Release RobotBeep, Beep - I am your friendly <a href="https://fediscience.org/tags/Snakemake" class="mention hashtag" rel="nofollow noopener" target="_blank">#Snakemake</a> release announcement bot.There is a new release of the Snakemake executor for <a href="https://fediscience.org/tags/SLURM" class="mention hashtag" rel="nofollow noopener" target="_blank">#SLURM</a> on <a href="https://fediscience.org/tags/HPC" class="mention hashtag" rel="nofollow noopener" target="_blank">#HPC</a> systems. Its version now is 1.6.0!Give us some time, and you will automatically find the plugin on <a href="https://fediscience.org/tags/Bioconda" class="mention hashtag" rel="nofollow noopener" target="_blank">#Bioconda</a> and <a href="https://fediscience.org/tags/Pypi" class="mention hashtag" rel="nofollow noopener" target="_blank">#Pypi</a>.If you want to discuss the release, you will find the maintainers here on Mastodon! <a href="https://fediscience.org/@rupdecat" class="u-url mention" rel="nofollow noopener" target="_blank">@rupdecat</a> and <a href="https://fosstodon.org/@johanneskoester" class="u-url mention" rel="nofollow noopener" target="_blank">@johanneskoester</a>If you discover any issues, please report them on <a href="https://github.com/snakemake/snakemake-executor-plugin-slurm/issues" rel="nofollow noopener" translate="no" target="_blank">https://github.com/snakemake/snakemake-executor-plugin-slurm/issues</a>.See <a href="https://github.com/snakemake/snakemake-executor-plugin-slurm/releases/tag/v1.6.0" rel="nofollow noopener" translate="no" target="_blank">https://github.com/snakemake/snakemake-executor-plugin-slurm/releases/tag/v1.6.0</a> for details. Here is the header of the changelog:𝑅𝑒𝑙𝑒𝑎𝑠𝑒 𝑁𝑜𝑡𝑒𝑠 (𝑝𝑜𝑠𝑠𝑖𝑏𝑙𝑦 𝑎𝑏𝑏𝑟𝑖𝑔𝑒𝑑): 𝐅𝐞𝐚𝐭𝐮𝐫𝐞𝐬* added github action to label long pending issues as 'stale' (<a href="https://github.com/snakemake/snakemake-executor-plugin-slurm/issues/239" rel="nofollow noopener" translate="no" target="_blank">https://github.com/snakemake/snakemake-executor-plugin-slurm/issues/239</a>) ([6d7c50a](<a href="https://github.com/snakemake/snakemake-executor-plugin-slurm/commit/6d7c50ae492c9557b6cc39119c572c5b5ef1b341" rel="nofollow noopener" translate="no" target="_blank">https://github.com/snakemake/snakemake-executor-plugin-slurm/commit/6d7c50ae492c9557b6cc39119c572c5b5ef1b341</a>)) * treat sbatch errors as job errors instead of workflow errors (<a href="https://github.com/snakemake/snakemake-executor-plugin-slurm/issues/322" rel="nofollow noopener" translate="no" target="_blank">https://github.com/snakemake/snakemake-executor-plugin-slurm/issues/322</a>) ([5e38507](<a href="https://github.com/snakemake/snakemake-executor-plugin-slurm/commit/5e3850762c73abf1fff8ba9e1e8c18379251041f" rel="nofollow noopener" translate="no" target="_blank">https://github.com/snakemake/snakemake-executor-plugin-slurm/commit/5e3850762c73abf1fff8ba9e1e8c18379251041f</a>)) * using the current version of the announcement bot for Mastodon (<a href="https://github.com/snakemake/snakemake-executor-plugin-slurm/issues/333" rel="nofollow noopener" translate="no" target="_blank">https://github.com/snakemake/snakemake-executor-plugin-slurm/issues/333</a>) ([03e0e24](<a href="https://github.com/snakemake/snakemake-executor-plugin-slurm/commit/03e0e2426edbe2957be93f02f3ae3834f710faff" rel="nofollow noopener" translate="no" target="_blank">https://github.com/snakemake/snakemake-executor-plugin-slurm/commit/03e0e2426edbe2957be93f02f3ae3834f710faff</a>))𝐁𝐮𝐠 𝐅𝐢𝐱𝐞𝐬* allow unse...

Jason WeatherlyAfter some refactoring, learning about `hatch`, moving more files around, and generally abusing `test.pypi.org`: I've uploaded `diceparse` to PyPI. Still need to update the web documentation, but it now feels like a proper project at this point.I still need to add a CLI part so you can just roll dice after installing the package, but I'll handle that later. Also need to tweak the README.md a bit as well...<a href="https://social.linux.pizza/tags/python" class="mention hashtag" rel="nofollow noopener" target="_blank">#python</a> <a href="https://social.linux.pizza/tags/diceparse" class="mention hashtag" rel="nofollow noopener" target="_blank">#diceparse</a> <a href="https://social.linux.pizza/tags/dice" class="mention hashtag" rel="nofollow noopener" target="_blank">#dice</a> <a href="https://social.linux.pizza/tags/ttrpg" class="mention hashtag" rel="nofollow noopener" target="_blank">#ttrpg</a> <a href="https://social.linux.pizza/tags/pypi" class="mention hashtag" rel="nofollow noopener" target="_blank">#pypi</a>

Erik-JanI was annoyed that there is no "expand_grid()" function in :python: <a href="https://fosstodon.org/tags/Python" class="mention hashtag" rel="nofollow noopener" target="_blank">#Python</a> as in :rstats: <a href="https://fosstodon.org/tags/RStats" class="mention hashtag" rel="nofollow noopener" target="_blank">#RStats</a> <a href="https://fosstodon.org/tags/tidyverse" class="mention hashtag" rel="nofollow noopener" target="_blank">#tidyverse</a> So I just published a small package on <a href="https://fosstodon.org/tags/PyPI" class="mention hashtag" rel="nofollow noopener" target="_blank">#PyPI</a> !Introducing polarsgrid <a href="https://pypi.org/project/polarsgrid/" rel="nofollow noopener" translate="no" target="_blank">https://pypi.org/project/polarsgrid/</a>Using the excellent <a href="https://fosstodon.org/tags/polars" class="mention hashtag" rel="nofollow noopener" target="_blank">#polars</a> 🐻‍❄️ package, easily create a table with product of factors: from polarsgrid import expand_grid expand_grid(a=[1, 2, 3], b=["x", "y"])Yields all combinations of its inputs as a <a href="https://fosstodon.org/tags/DataFrame" class="mention hashtag" rel="nofollow noopener" target="_blank">#DataFrame</a>It can also produce a <a href="https://fosstodon.org/tags/LazyFrame" class="mention hashtag" rel="nofollow noopener" target="_blank">#LazyFrame</a> for streaming extra-big tables to disk

⚯ Michel de Cryptadamus ⚯Just published version 1.16.6 of The Pdfalyzer, the surprisingly popular tool for analyzing (possibly malicious) PDFs I created after my own unpleasant encounter with such a creature. Includes a (kind of janky) <a href="https://universeodon.com/tags/YARA" class="mention hashtag" rel="nofollow noopener" target="_blank">#YARA</a> rule for <a href="https://universeodon.com/tags/GIFTEDCROOK" class="mention hashtag" rel="nofollow noopener" target="_blank">#GIFTEDCROOK</a> infostealer PDFs.* Github: <a href="https://github.com/michelcrypt4d4mus/pdfalyzer" rel="nofollow noopener" translate="no" target="_blank">https://github.com/michelcrypt4d4mus/pdfalyzer</a> * Pypi: <a href="https://pypi.org/project/pdfalyzer/" rel="nofollow noopener" translate="no" target="_blank">https://pypi.org/project/pdfalyzer/</a> * Homebrew: <a href="https://formulae.brew.sh/formula/pdfalyzer" rel="nofollow noopener" translate="no" target="_blank">https://formulae.brew.sh/formula/pdfalyzer</a><a href="https://universeodon.com/tags/pypi" class="mention hashtag" rel="nofollow noopener" target="_blank">#pypi</a> <a href="https://universeodon.com/tags/python" class="mention hashtag" rel="nofollow noopener" target="_blank">#python</a> <a href="https://universeodon.com/tags/pdf" class="mention hashtag" rel="nofollow noopener" target="_blank">#pdf</a> <a href="https://universeodon.com/tags/pdfs" class="mention hashtag" rel="nofollow noopener" target="_blank">#pdfs</a> <a href="https://universeodon.com/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a> <a href="https://universeodon.com/tags/Threatassessment" class="mention hashtag" rel="nofollow noopener" target="_blank">#Threatassessment</a> <a href="https://universeodon.com/tags/maldoc" class="mention hashtag" rel="nofollow noopener" target="_blank">#maldoc</a> <a href="https://universeodon.com/tags/malwareanalysis" class="mention hashtag" rel="nofollow noopener" target="_blank">#malwareanalysis</a> <a href="https://universeodon.com/tags/homebrew" class="mention hashtag" rel="nofollow noopener" target="_blank">#homebrew</a> <a href="https://universeodon.com/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://universeodon.com/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://universeodon.com/tags/yararule" class="mention hashtag" rel="nofollow noopener" target="_blank">#yararule</a>

Matthew Martin<a href="https://mastodon.social/tags/python" class="mention hashtag" rel="nofollow noopener" target="_blank">#python</a> <a href="https://mastodon.social/tags/pypi" class="mention hashtag" rel="nofollow noopener" target="_blank">#pypi</a> the name apocalypse is coming - all the good names are taken

mgorny-nyan (on) :autism:🙀🚂🐧No i mamy kolejny powód, żeby nie używać <a href="https://pol.social/tags/PythonPoetry" class="mention hashtag" rel="nofollow noopener" target="_blank">#PythonPoetry</a>. Właśnie wynaleźli na nowo "reproducible build", i wyszło jak zwykle. Całkiem przeoczyli cały sens tego pomysłu, i zaczęli wymuszać znaczniki czasu na plikach w archiwach źródłowych. A do tego, jak SOURCE_DATE_EPOCH nie jest ustawione, to zamiast wyłączać tę funkcję, wymuszają znacznik zerowy.Tak więc wszystkie archiwa sdist tworzone przez Poetry i wrzucane na <a href="https://pol.social/tags/PyPI" class="mention hashtag" rel="nofollow noopener" target="_blank">#PyPI</a> dziś mają daty z roku 1970, co powoduje przypadkowe problemy. A najbardziej absurdalne w tym jest to, że ZIP nie obsługuje takich dat, więc kiedy tworzą archiwa binarne wheel, to nadpisuję tę datę inną przypadkową datą 🤦.<a href="https://github.com/python-poetry/poetry/issues/10083" rel="nofollow noopener" translate="no" target="_blank">https://github.com/python-poetry/poetry/issues/10083</a>

Frederik ElwertYou want to use a <a href="https://fedihum.org/tags/StaticSiteGenerator" class="mention hashtag" rel="nofollow noopener" target="_blank">#StaticSiteGenerator</a> and need to support <a href="https://fedihum.org/tags/multilingual" class="mention hashtag" rel="nofollow noopener" target="_blank">#multilingual</a> sites? It’s now easier than ever! For quite a while, <a href="https://fedihum.org/tags/Pelican" class="mention hashtag" rel="nofollow noopener" target="_blank">#Pelican</a> had a great plugin for that use case. Now I helped migrate it to the new plugin format, which means that it can easily be installed from <a href="https://fedihum.org/tags/PyPI" class="mention hashtag" rel="nofollow noopener" target="_blank">#PyPI</a>. <a href="https://github.com/pelican-plugins/i18n-subsites" rel="nofollow noopener" translate="no" target="_blank">https://github.com/pelican-plugins/i18n-subsites</a> <a href="https://fedihum.org/tags/MultilingualDH" class="mention hashtag" rel="nofollow noopener" target="_blank">#MultilingualDH</a> <a href="https://fedihum.org/tags/MinimalComputing" class="mention hashtag" rel="nofollow noopener" target="_blank">#MinimalComputing</a>

Michael HankeThere is now a <a href="https://mas.to/tags/gitAnnex" class="mention hashtag" rel="nofollow noopener" target="_blank">#gitAnnex</a> package on <a href="https://mas.to/tags/PyPi" class="mention hashtag" rel="nofollow noopener" target="_blank">#PyPi</a>: <a href="https://pypi.org/project/git-annex/" rel="nofollow noopener" translate="no" target="_blank">https://pypi.org/project/git-annex/</a>This should make it simpler to deploy git-annex in Python virtual environments, also as versioned dependencies for software like <a href="https://mas.to/tags/Datalad" class="mention hashtag" rel="nofollow noopener" target="_blank">#Datalad</a> Packages are built for Linux, Windows, and Mac via GitHub actions: <a href="https://github.com/psychoinformatics-de/git-annex-wheel/" rel="nofollow noopener" translate="no" target="_blank">https://github.com/psychoinformatics-de/git-annex-wheel/</a>Contributions to cover more platforms are most welcome!

Gleb EbertI enjoyed writing my first blog post last weekend, so I thought I'd write another one. This one is about a <a href="https://mstdn.science/tags/bash" class="mention hashtag" rel="nofollow noopener" target="_blank">#bash</a> script that became a <a href="https://mstdn.science/tags/Python" class="mention hashtag" rel="nofollow noopener" target="_blank">#Python</a> script and is now a package. All because I was too lazy to label plates and tubes in the lab by hand. The post is mostly about the history and motivation behind the package, i.e. the stuff that does't really fit into the README<a href="https://www.gl-eb.me/blog/posts/2025-05-25_generate-labels/" rel="nofollow noopener" translate="no" target="_blank">https://www.gl-eb.me/blog/posts/2025-05-25_generate-labels/</a><a href="https://mstdn.science/tags/quarto" class="mention hashtag" rel="nofollow noopener" target="_blank">#quarto</a> <a href="https://mstdn.science/tags/foss" class="mention hashtag" rel="nofollow noopener" target="_blank">#foss</a> <a href="https://mstdn.science/tags/Pypi" class="mention hashtag" rel="nofollow noopener" target="_blank">#Pypi</a> <a href="https://mstdn.science/tags/uv" class="mention hashtag" rel="nofollow noopener" target="_blank">#uv</a>

nemo™ 🇺🇦🚨 Researchers uncovered malicious PyPI packages exploiting Instagram & TikTok APIs to validate stolen emails! These tools help attackers confirm accounts for doxing, spam, or credential stuffing. Stay alert, devs! Full story: <a href="https://thehackernews.com/2025/05/malicious-pypi-packages-exploit.html" rel="nofollow noopener" translate="no" target="_blank">https://thehackernews.com/2025/05/malicious-pypi-packages-exploit.html</a> <a href="https://mas.to/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://mas.to/tags/PyPI" class="mention hashtag" rel="nofollow noopener" target="_blank">#PyPI</a> <a href="https://mas.to/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfoSec</a> 🔒🐍 <a href="https://mas.to/tags/newz" class="mention hashtag" rel="nofollow noopener" target="_blank">#newz</a>

Steve Leach<a href="https://sigmoid.social/tags/Python" class="mention hashtag" rel="nofollow noopener" target="_blank">#Python</a> <a href="https://sigmoid.social/tags/Wikipedia" class="mention hashtag" rel="nofollow noopener" target="_blank">#Wikipedia</a> library on <a href="https://sigmoid.social/tags/PyPi" class="mention hashtag" rel="nofollow noopener" target="_blank">#PyPi</a> is currently broken. I was gonna do a crawl with it starting with "Earth" and then getting all pages linked from there and all from those, etc.Unfortunately, "Earth" returns the page for "Death" instead. Every single time.The next thing I tried I forget but it failed entirely. But Earth maps to Death in the library always right now.<a href="https://sigmoid.social/tags/Wikipedia" class="mention hashtag" rel="nofollow noopener" target="_blank">#Wikipedia</a>-api library works though.

Matthew MartinNow <a href="https://mastodon.social/tags/golang" class="mention hashtag" rel="nofollow noopener" target="_blank">#golang</a> has a supply chain security problem.Github actions, terraform, go.... hmm, what do we got in common here.. treating git endpoints as trusted. But git endpoints can't have any central authority to check for malicious code! At least at <a href="https://mastodon.social/tags/pypi" class="mention hashtag" rel="nofollow noopener" target="_blank">#pypi</a> you can report a package as malicious.<a href="https://www.youtube.com/watch?v=EyO_SMl2YBk&ab_channel=CodeHead" rel="nofollow noopener" translate="no" target="_blank">https://www.youtube.com/watch?v=EyO_SMl2YBk&ab_channel=CodeHead</a>

Mike Fiedler, Code GardenerIf you're at <a href="https://hachyderm.io/tags/PyConUS" class="mention hashtag" rel="nofollow noopener" target="_blank">#PyConUS</a> today and wanna chat, I'll be at a sponsor presentation this afternoon <a href="https://us.pycon.org/2025/schedule/presentation/153/" rel="nofollow noopener" translate="no" target="_blank">https://us.pycon.org/2025/schedule/presentation/153/</a> Or at <a href="https://fosstodon.org/@ThePSF" class="u-url mention" rel="nofollow noopener" target="_blank">@ThePSF</a> booth in the Expo Hall during the Opening Reception <a href="https://hachyderm.io/tags/PyCon" class="mention hashtag" rel="nofollow noopener" target="_blank">#PyCon</a> <a href="https://hachyderm.io/tags/Python" class="mention hashtag" rel="nofollow noopener" target="_blank">#Python</a> <a href="https://hachyderm.io/tags/PyPI" class="mention hashtag" rel="nofollow noopener" target="_blank">#PyPI</a> <a href="https://hachyderm.io/tags/Security" class="mention hashtag" rel="nofollow noopener" target="_blank">#Security</a> <a href="https://hachyderm.io/tags/NotNeedy" class="mention hashtag" rel="nofollow noopener" target="_blank">#NotNeedy</a>

Open RiskThere are currently 636,000 <a href="https://mastodon.social/tags/python" class="mention hashtag" rel="nofollow noopener" target="_blank">#python</a> projects on <a href="https://mastodon.social/tags/pypi" class="mention hashtag" rel="nofollow noopener" target="_blank">#pypi</a> By the time you read this there will be several more, to the tune of one every few minutes<a href="https://mastodon.social/tags/opensource" class="mention hashtag" rel="nofollow noopener" target="_blank">#opensource</a> tools, algorithms, frameworks for <a href="https://mastodon.social/tags/datascience" class="mention hashtag" rel="nofollow noopener" target="_blank">#datascience</a>, <a href="https://mastodon.social/tags/machinelearning" class="mention hashtag" rel="nofollow noopener" target="_blank">#machinelearning</a>, <a href="https://mastodon.social/tags/webdev" class="mention hashtag" rel="nofollow noopener" target="_blank">#webdev</a> and much, much more, in principle accessible to everybodyWhat does this mean, where will this lead?Your guess as good as mine. But this is emphatically *not* the world we used to live-in, until recentlyRemember this when you are gloomy<a href="https://pypi.org/" rel="nofollow noopener" translate="no" target="_blank">https://pypi.org/</a>

VictorhckWe're proud to announce that <a href="https://mastodon.social/@gnuhealth" class="u-url mention" rel="nofollow noopener" target="_blank">@gnuhealth</a> is now an organization in the Python Package Index (<a href="https://mastodon.social/tags/PyPI" class="mention hashtag" rel="nofollow noopener" target="_blank">#PyPI</a>).The organization makes it easy to find and explore our projects and packages. <a href="https://savannah.gnu.org/news/?id=10770" rel="nofollow noopener" translate="no" target="_blank">https://savannah.gnu.org/news/?id=10770</a>

GNU HealthWe're proud to announce that <a href="https://mastodon.social/tags/GNUHealth" class="mention hashtag" rel="nofollow noopener" target="_blank">#GNUHealth</a> is now an organization in the Python Package Index (<a href="https://mastodon.social/tags/PyPi" class="mention hashtag" rel="nofollow noopener" target="_blank">#PyPi</a>). It's very easy to navigate our projects on pypi. 🩺 🏥 ❤️ 👇 <a href="https://pypi.org/org/GNUHealth/" rel="nofollow noopener" translate="no" target="_blank">https://pypi.org/org/GNUHealth/</a><a href="https://mastodon.social/tags/OpenScience" class="mention hashtag" rel="nofollow noopener" target="_blank">#OpenScience</a> <a href="https://mastodon.social/tags/GNU" class="mention hashtag" rel="nofollow noopener" target="_blank">#GNU</a>

Hugo van KemenadeThere's a long tail in PyPI downloads.Here's the 15k most popular packages from <a href="https://hugovk.github.io/top-pypi-packages/" rel="nofollow noopener" translate="no" target="_blank">https://hugovk.github.io/top-pypi-packages/</a> charted. The second is with log scale.<a href="https://mastodon.social/tags/Python" class="mention hashtag" rel="nofollow noopener" target="_blank">#Python</a> <a href="https://mastodon.social/tags/PyPI" class="mention hashtag" rel="nofollow noopener" target="_blank">#PyPI</a> <a href="https://mastodon.social/tags/LongTail" class="mention hashtag" rel="nofollow noopener" target="_blank">#LongTail</a>

The New OilMalicious <a href="https://mastodon.thenewoil.org/tags/PyPI" class="mention hashtag" rel="nofollow noopener" target="_blank">#PyPI</a> packages abuse <a href="https://mastodon.thenewoil.org/tags/Gmail" class="mention hashtag" rel="nofollow noopener" target="_blank">#Gmail</a>, <a href="https://mastodon.thenewoil.org/tags/websockets" class="mention hashtag" rel="nofollow noopener" target="_blank">#websockets</a> to hijack systems<a href="https://www.bleepingcomputer.com/news/security/malicious-pypi-packages-abuse-gmail-websockets-to-hijack-systems/" rel="nofollow noopener" translate="no" target="_blank">https://www.bleepingcomputer.com/news/security/malicious-pypi-packages-abuse-gmail-websockets-to-hijack-systems/</a><a href="https://mastodon.thenewoil.org/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a>

diffractcoloursSo <a href="https://tech.lgbt/tags/Python" class="mention hashtag" rel="nofollow noopener" target="_blank">#Python</a> people what's your favourite way to check for vulnerabilities in your <a href="https://tech.lgbt/tags/PyPi" class="mention hashtag" rel="nofollow noopener" target="_blank">#PyPi</a> supply chain?My app lives inside a <code>pipenv</code> and everything's installed in that, from <a href="https://tech.lgbt/tags/Django" class="mention hashtag" rel="nofollow noopener" target="_blank">#Django</a> to <a href="https://tech.lgbt/tags/gunicorn" class="mention hashtag" rel="nofollow noopener" target="_blank">#gunicorn</a>.

phildiniThe fine tradition of "releasing a package to <a href="https://wandering.shop/tags/pypi" class="mention hashtag" rel="nofollow noopener" target="_blank">#pypi</a> for the bit" continues at <a href="https://wandering.shop/tags/NBPy" class="mention hashtag" rel="nofollow noopener" target="_blank">#NBPy</a> thanks to <a href="https://toots.n7.gg/@amethyst" class="u-url mention" rel="nofollow noopener" target="_blank">@amethyst</a> <a href="https://pypi.org/project/do-while/" rel="nofollow noopener" translate="no" target="_blank">https://pypi.org/project/do-while/</a>

Recent searches

Search options

Administered by:

Server stats:

#pypi