Be careful when installing Python packages
Welcome back! Python is one of my favorite programming languages out there, but it’s not perfect. One of the best aspects of Python is the development community behind it, there are a ton of people using this language, thus, there are tons of people developing packages for it. This isn’t necessarily a problem, but if you’re not careful, you could actually be installing malware on your machine. Now, a majority of users who use Python (including myself) typically install Python packages via pip, this is the one of the easiest ways to install a package to your environment, all of these packages are actually stored with PyPi, this is the Python Package Index:
Pretty much anyone can upload a package within this index, this makes it an amazing resource for gaining those package functionality within your project, but there is a bit of a problem here, since anyone can upload a package to this index, that means anyone could potentially install malware on your machine. Now, I would probably say a majority of the packages are perfectly fine, especially the much larger packages (Pandas, Numpy, PyTorch, etc.), but even…
