[false-positive] pypi package lodestone appears to be non-malicious
calebbrown opened this issue · comments
This package probably needs to be withdrawn, as it does not appear to be malicious, despite its use of ngrok.
ossf / malicious-packages
A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerability (OSV) format.