PyTorch’s dependency chain—additional packages that are downloaded during its installation—includes a library called torchtriton that was hosted on PyTorch’s own index for nightly builds.

Package maintainers for open source framework PyTorch have said a malicious dependency imitating one of its own was available on a prominent code repository during the holiday season.

Moreover, for organizations at risk, 73% of their assets are exposed to dependency confusion attacks, shedding new light on the devastating impact this type of attack can have on an organization.