TeamPCP strikes again: Xinference (v2.6.0-2.6.2) PyPI package compromisedresearch.jfrog.com1 pointlukecarr2 months ago