On Friday, security researcher RyotaK published information on three vulnerabilities in PyPI, one of which could potentially lead to the compromise of the entire PyPI ecosystem.

Python Package Index (PyPI) is the official third-party software repository for the Python programming language, with some package managers using it as the default source for packages and dependencies.

The issue was related to the combine-prs.yml workflow in pypa/warehouse, which was designed to collect and merge pull requests with branch names that start with dependabot (Dependabot itself doesn’t have a feature to merge pull requests).