ZDNet

Twelve malicious Python libraries found and removed from PyPI

A software security engineer has identified 12 Python libraries uploaded on the official Python Package Index (PyPI) that contained malicious code. The 12 packages have been discovered in two separate ...
GitHub

Pypi release 1.0.11 does not support Django 5.0

The 1.0.11 release expects Django version <5.0. I don't know if there is anything actually incompatible with Django 5 but since its out now the package is broken until a new release.