CSO Online

Critical RCE bugs expose the n8n automation platform to host‑level compromise

A JavaScript sandbox bug rated CVSS 9.9 enables attackers to bypass AST‑based protections, while a Python execution bypass ...
How-To Geek on MSN

PyCharm IDE for Python development just got a big update

PyCharm and Google Colab are finally joining forces.
The Hacker News

Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan

Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.
GitHub

A secure, session-based web sandbox for executing Python code. This application provides each user with a dedicated, isolated Docker container that persists for their browser ...

Each user session is assigned a dedicated Docker container that runs until the browser tab is closed. If your code imports a package that is not available, the sandbox automatically installs it from ...
The Hacker News

Three Flaws in Anthropic MCP Git Server Enable File Access and Code Execution

Three vulnerabilities in Anthropic’s MCP Git server allow prompt injection attacks that can read or delete files and, in some ...
GitHub

An automated trading system that implements vertical spread trading strategies using Interactive Brokers (IBKR) API. The system scans for specific technical patterns, selects ...

The system is designed to identify technical patterns in equities, select optimal vertical spreads based on configurable criteria, and execute trades with proper risk management controls. python/ ...