pyregions-snowflake @3.9.10
Vulnerability report · Last retrieved from osv.dev June 23, 2026 at 3:29 AM UTC
OSV ID
MAL-2026-2109
Ecosystem
pypi
Summary
During installation, the package starts obfuscated code that downloads and runs remote executables in specific environments - in older packages - attempts to exfiltrate some basic information using DNS requests and then likely cover tracks by installing a similarly named package from private repository --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: 2026-02-urllib-slim Reasons (based on the campaign): - typosquatting - Downloads and executes a remote executable. - obfuscation - dependency-confusion
Source: kam193 (4c3a6759d779c0fe3ffac5559aa5f8915f72cab6bce545e1fe261f3caab47a65)
Protect your entire dependency tree
Scan your lock files automatically on every PR. Block malicious packages before they reach production.