PyPI

PyPI security breaches forced strict corporate policies, fragmented package management (pip/conda), and critical libraries like NumPy and Pandas struggle with GPU demands, creating incompatible forks and version conflicts.

MCP servers are distributed via npm and PyPI without universal verification, exposing the ecosystem to the same supply chain attacks that plague web development. Tool descriptions can be modified post-approval (rug pulls).

Malicious packages exploiting pip vulnerabilities peaked in 2024. Companies mandate expensive audits and SBOM generation, with developers spending more time on compliance than coding. Python's dynamic typing complicates security reviews.