Three additional malicious Python packages have been discovered in the Package Index (PyPI) repository as part of an ongoing malicious software supply chain campaign calledVMConnect, with signs pointing to the involvement of North Korean state-sponsored threat actors. Thefindingscome from ReversingLabs, which detected the packages tablediter, request-plus, and requestspro. First disclosed at