The Hacker News

Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan

Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.
GitHub

judovana/java-runtime-decompiler

Java Runtime (De)compiler, or JRD for short, allows you to extract bytecode from the running JVM and decompile it with an external decompiler and compile back to ...
GitHub

A tool to decompile SoundFont (SF2/SF3) files into directory structures and recompile them.

MySoundFont/ │ ├── info.json # Metadata (name, copyright, version, etc.) │ ├── samples/ # Waveform data (FLAC/OGG files + metadata JSON) │ ├── Piano FF A0.flac │ ├── Piano FF A0.json # Loop points, ...