FTA:
For security reasons, the suggested stubs are limited to only a small subset of manually selected packages that have been verified by the typeshed team. These packages include only stub files and no executable code.
Yes but the article doesn't list them. You are encouraging people to type in 'pip install types-aiohttp' if they want types for that library, and took no step to ensure that won't be malicious.