1. Ray, lxml, sqlitedict Expose Critical Attack Surface as Three High-Severity Vulnerabilities Surface in Popular Python Packages
A cluster of high-severity security vulnerabilities has been identified across three widely deployed Python packages, raising fresh concerns about supply-chain risk in open-source dependencies. The alerts, surfaced through GitHub's dependabot system on April 24, 2026, affect Ray, lxml, and sqlitedict—all packages with ...