We have received information that the Santy sourcecode has been published on certain sites and security related mailinglists.
This opens the door for new variants to arise. However, I doubt that new variants will be very effective, unless search engines just keep on spitting out new, unpatched sites.
But seeing that a lot of sites are already infected, patched or a combination of both, I think the situation will not get as bad as we have seen now with Santy.a.
Santy sourcecode publicly available