Name of the Vulnerable Software and Affected Versions deep-translator (affected versions not specified)

Description The deep-translator project on PyPI was compromised through a phishing attack, resulting in a malicious release that downloads and runs malware at install time by accessing some environment variables.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.