Skip to content

pymocks malicious PyPI package

Malware Published Aug 30, 2022 to the GitHub Advisory Database • Updated Aug 30, 2022

Package

pip pymocks (pip)

Affected versions

>= 0

Patched versions

None

Description

Security researchers at Check Point Research discovered a malicious package called pymocks. PyPI has since removed pymocks.

References

Published to the GitHub Advisory Database Aug 30, 2022
Last updated Aug 30, 2022

EPSS score

Weaknesses

GHSA ID

GHSA-8rgr-xgx4-q7jq

Source code

No known source code
Improvements are not currently accepted on this advisory because this package is malware and has no patched versions. If there is something to change, please open an issue at https://github.com/github/advisory-database/issues.