A threat actor by the nameLolip0phas uploaded three rogue packages to the Python Package Index (PyPI) repository that are designed to drop malware on compromised developer systems. The packages namedcolorslib(versions 4.6.11 and 4.6.12),httpslib(versions 4.6.9 and 4.6.11), andlibhttps(version 4.6.12) by the author between January 7, 2023, and January 12, 2023. They have since been