<div dir="auto">Dateutil has been found to contain malicious code, a github search shows 10+ uses of dateutil in Sugar Labs repos.<div dir="auto"><br></div><div dir="auto">You can read more about it here</div><div dir="auto"><a href="https://www.zdnet.com/article/two-malicious-python-libraries-removed-from-pypi/">https://www.zdnet.com/article/two-malicious-python-libraries-removed-from-pypi/</a><br></div></div>