Looking to confirm that the following malicious python libraries are not present in Runtime Java, QT 100.6 and 100.7.
Specifically, want to ensure the following libraries are not there: The first is "python3-dateutil," which imitated the popular "dateutil" library. The second is "jeIlyfish" (the first L is an I), which mimicked the "jellyfish" library.
If present, what part of the runtime (location) to confirm this?
While we have Python 2 and 3 included in the LocalServer SDK for our desktop APIs, these are built on top of Anaconda, so that only their vetted packages would be included in any potential packages. Alternatively we build from sources for packages we maintain. Most importantly, neither of the libraries you mentioned are in our installs.
If you have any further questions, please don't hesitate to ask.