Python's ctx library and a fork of PHP's phpass have been compromised. 3 million users combined. The malicious code sends all the environment variables to a heroku app, likely to mine AWS credentials.

Amazon Web Services' automated code review helps developers find serious security issues in Java and Python applications. Written by Liam Tung, Contributing Writer Feb. 16, 2022, 4:21 a.m. PT ...

From there, you can easily edit your Python code and quickly test your AWS Lambda functions all within the AWS Management Console. Serverless computing with Python in AWS really couldn’t be easier.