Identify malicious PyPI packages using static analysis and metadata heuristics | Dark Hacker News