![](https://lemmy.sdf.org/pictrs/image/a31d0863-828d-4f9e-921f-596cdcae22f0.png)
![](https://programming.dev/pictrs/image/881b3e0d-8ebe-43f5-afc3-c30fdc29bfba.png)
OK, I agree it could be something more malicious, and that the safest solution is always to bin something unknown.
My position is that the op knows the USB device and suspects it has been compromised by connecting it to a windows machine. But the content may be worth salvaging. In that case, my advice still applies.
If it’s several python modules, then yes, choose a license and then contact pypi and see if you can distribute your modules through them.
One very important thing is that you have to make sure everything is ready for distribution: check your project will work (possibly starting with a blank VM), what its dependencies are, that the requirements.txt file is good and operational, that automated tests are available for people to run after installing, etc.
In other words, the ideal project is not just a question of license but also all the scaffoldings you supply with it.
Thanks for opening your code!