Skip to content

ascii2text malicious PyPI package

Malware Published Aug 30, 2022 to the GitHub Advisory Database

Package

pip ascii2text (pip)

Affected versions

>= 0

Patched versions

None

Description

Security researchers at Check Point Research discovered a malicious package called ascii2text impersonating the PyPI package art. PyPI has since removed ascii2text.

References

Published to the GitHub Advisory Database Aug 30, 2022

EPSS score

Weaknesses

GHSA ID

GHSA-hqmv-64pp-q4xw

Source code

No known source code
Improvements are not currently accepted on this advisory because this package is malware and has no patched versions. If there is something to change, please open an issue at https://github.com/github/advisory-database/issues.