Well I wanted to run PYFA but antivirus stopped me saying that there is malicious file in there
Package: attrs (whl)
Version: 26.1.0
Description: Classes Without Boilerplate
The package 'attrs' version 26.1.0 is a malicious impersonation of the legitimate 'attrs' library. It uses a fake version number (the current stable version of attrs is 23.x) and bundles a massive collection of compiled binary extensions (.pyd files) and data from unrelated projects, including matplotlib, numpy, sqlalchemy, and a tool called 'pyfa' (Python Fitting Assistant). The package metadata (RECORD) is inconsistent with the provided files, and the inclusion of numerous third-party binaries under the guise of a popular, lightweight library like 'attrs' is a definitive indicator of a malicious bundle designed for unauthorized payload delivery and potential code execution.
Can this be false alarm?
Well I wanted to run PYFA but antivirus stopped me saying that there is malicious file in there
Can this be false alarm?