The Year Progress Bar of the Year

PyTorch discloses malicious dependency chain compromise over the holidays. Someone put a malicious version on PyPI and when PyTorch was getting set up, instead of picking its own version, it preferred the PyPI version which was a virus. Read wise is like an RSS reader, but it also lets you take notes, mark stuff as read for later - even if it doesn't have an RSS feed. It's sub-ideal since the PyPI index takes advantage of this package to do bad things.