Malicious actors are constantly on the lookout for new attack vectors and techniques. One major covert attack vector is the software supply chain, in which the attacker doesnt target the organization itself. Python Package Index, commonly known as PyPI or Cheese Shop, has been the target of misuse on several occasions. We processed the entire PyPI repository with our Titanium Platform static analysis solution running on a single server. The data set contained 1,584,049 files, including all packages and their historical versions, with the total size of 2.61 TB.”]