Jun 12 2022 PyPI package 'keep' mistakenly included a password stealer

Source

PyPI packages 'keep,' 'pyanxdns,' 'api-res-py' were found to contain a password-stealer and a backdoor due to the presence of malicious 'request' dependency within some versions. [...]