Iphasela le-Python lekhosombe le-PyPI (Python Package Index) liyekile okwesikhashana ukubhalisa abasebenzisi abasha namaphrojekthi. Isizathu esinikeziwe wukwanda komsebenzi wabahlaseli asebeqale ukushicilela amaphakheji anekhodi enonya. Kuyaphawulwa ukuthi, uma kubhekwa ukuthi abaphathi abambalwa bebeseholidini, ngesonto eledlule umthamo wamaphrojekthi anonya abhalisiwe wedlula amakhono ethimba elisele le-PyPI lokuphendula ngokushesha. Onjiniyela bahlela ukwakha kabusha izinqubo ezithile zokuqinisekisa ngempelasonto, bese beqala kabusha ikhono lokubhalisa endaweni yokugcina.
Ngokohlelo lokuqapha imisebenzi enonya oluvela kwa-Sonatype, ngoMashi 2023, kwatholakala amaphakheji anonya ayi-6933 kukhathalogi ye-PyPI, futhi isiyonke, kusukela ngo-2019, inani lamaphakheji anonya atholakele lidlule izinkulungwane eziyi-115. NgoZibandlela wezi-2022, ngenxa yokuhlaselwa kwemibhalo ye-NuGet, NPM kanye ne-PyPI, kwaqoshwa ukushicilelwa kwamaphakheji ayizinkulungwane eziyi-144 anobugebengu bokweba imininingwane ebucayi kanye nekhodi yogaxekile.
Iningi lamaphakheji anonya lifihlwa njengemitapo yolwazi edumile esebenzisa i-typosquatting (ukunikeza amagama afanayo ahluka ngezinhlamvu ngazinye, isibonelo, i-expl esikhundleni sesibonelo, i-djangoo esikhundleni se-django, i-pyhton esikhundleni se-python, njll.) - abahlaseli bathembele kubasebenzisi abanganakile abenze thayipha noma awubonanga umehluko egameni lapho usesha. Izenzo ezinonya ngokuvamile ziholela ekuthumeleni idatha eyimfihlo etholakala ohlelweni lwendawo ngenxa yokuhlonza amafayela avamile anamagama ayimfihlo, okhiye bokufinyelela, izikhwama ze-crypto, amathokheni, iseshini Amakhukhi kanye nolunye ulwazi oluyimfihlo.
Source: opennet.ru