pypi
Malicious pyqt6darktheme @0.1.0
Vulnerability report · Last retrieved from osv.dev July 8, 2026 at 10:24 PM UTC
OSV ID
MAL-2026-6960
Ecosystem
pypi
Summary
Package downloads and runs a remote executable, which was found to downloads further exes and starting coine mining --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: 2026-07-pyqt6darktheme Reasons (based on the campaign): - Downloads and executes a remote executable. - cryptominer - malware
Source: kam193 (2bdc188e3830dcb855d495618a4f3de11307a230cfef8c8ca4ce93199f254ca7)
Protect your entire dependency tree
Scan your lock files automatically on every PR. Block malicious packages before they reach production.