published The results of scanning of packets in the PYPI repository (Python Package Index) for the presence of access for access to Amazon Web Services (AWS). The audit was prompted by last year’s incident with leakage AWS- Infosys keys. As it turned out, the case was not a single and in the code presented in the PYPI packets it was possible to identify 57 more current keys that were present in the projects of large companies such as Amazon, Intel, Terradata, genial atomics , Top Glove и Delta Lake, а также в репозиториях Australian government and universities Портланда и Louisiana .
To search for keys in the code, the utility was used ripgrepa
/Media reports cited above.