Pypi Supply Chain Security Dustin Ingram Packagingcon 2021

By switzerlandersing On Sep 12, 2025

Digital Supply Chain Summit 2021 Recordings - Supply Chain Wizard

Digital Supply Chain Summit 2021 Recordings - Supply Chain Wizard In this talk, we'll review some recent supply chain attacks and how they relate to pypi specifically. in addition, we'll take a look at some in progress projects to make pypi more resilient. I’m dustin (aka @di), an engineer on google’s open source security team, focused on on improving the security of open source software that google (and the rest of the world) relies on.

BCI Supply Chain Resilience Report 2021 | BCI

BCI Supply Chain Resilience Report 2021 | BCI In this talk, we'll review some recent supply chain attacks and how they relate to pypi specifically. in addition, we'll take a look at some in progress projects to make pypi more resilient, secure and sustainable. This week on the show, we have dustin ingram, a director of the python software foundation (psf) and a maintainer of the python package index (pypi). we talk about dustin’s pycon 2021 talk titled “secure software supply chains for python”. This talk reviews recent supply chain attacks and how they relate to python package index (pypi) specifically. it also shows some in progess projects to make pypi more resilient, secure and sustainable. All that said, let's look at the first one. secure software supply chains for python this is a summary of this talk by dustin ingram, a pypi maintainer. the talk describes: what software supply chain attacks are. the current best python practice for developes. what improvements could be made to pip and pypi in future. supply chain attacks they.

What Does It Take To Power The Python Package Index? - Dustin Ingram

What Does It Take To Power The Python Package Index? - Dustin Ingram This talk reviews recent supply chain attacks and how they relate to python package index (pypi) specifically. it also shows some in progess projects to make pypi more resilient, secure and sustainable. All that said, let's look at the first one. secure software supply chains for python this is a summary of this talk by dustin ingram, a pypi maintainer. the talk describes: what software supply chain attacks are. the current best python practice for developes. what improvements could be made to pip and pypi in future. supply chain attacks they. In this talk, we'll explore the common python software supply chain, various ways in which such a supply chain can be attacked, as well as protected. we'll examine some tools and methodologies that help improve supply chain security, and discuss the challenges and benefits these tools provide. Python related videos and metadata powering pyvideo. data/pycon us 2021/videos/talk dustin ingram secure software supply chains for python.json at main · pyvideo/data. How well do you know your software supply chain? when you pip install a package, what steps can you take to minimize the risk of installing something malicious? this week on the show, we have dustin i. Don’t miss out! join us at our next event: kubecon cloudnativecon europe 2022 in valencia, spain from may 17 20. learn more at https://kubecon.io the confe.