Supply-chain threat intelligence
Risk score
92
Indexed incident for confighub (pypi).
This package depends on malicious 'procwire', which starts malicious actions during installation.
Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.
Campaign: 2026-07-procwire
Reasons (based on the campaign):
The package overrides the install command in setup.py to execute malicious code during installation.
Downloads and executes a remote executable.
obfuscation
The malicious code is intentionally included in a dependency of the package
malware
steganography
Affected versions
Indicators
Timeline