On April 22, 2026, NSFOCUS CERT reported a supply chain poisoning incident involving the Xinference library on the Python Package Index (PyPI). Attackers compromised the release permission credentials of Xinference maintainers, leading to the release of three malicious library versions. These versions contained Trojans that, upon user execution, would exfiltrate sensitive data like cloud credentials, SSH keys, API tokens, database passwords, and environment variable configurations to the attackers' command and control (C2) server.