and running commands or retrieving data from Discord without a bot account. According to code security company Socket, the malicious package was added to PyPi last year in June and has been ...