Seth Michael Larson
@sethmlarson
@ThePSF Security Developer-in-Residence 🐍
PSF Fellow ✨ Minnesoootan, he/him
https://t.co/Bd3K7TNj7b
ID:722557924011184128
https://sethmlarson.dev 19-04-2016 22:50:08
7,3K Tweets
3,0K Followers
456 Following
PyPI now has three new Trusted Publishing, thanks (in part) to our work at Trail of Bits! This realizes our goal of expanding Trusted Publishing to compute environments outside of GitHub Actions:
blog.pypi.org/posts/2024-04-…
Starting today, PyPI package maintainers can publish via Trusted Publishing from three additional providers:
- 🦊 GitLab
- Google Cloud
- ActiveState
They join GitHub Actions to support publishing without long-lived passwords or API tokens.
blog.pypi.org/posts/2024-04-…
🎉 ActiveState is pleased to announce our inclusion as a Trusted Publisher to PyPI, enabling Python authors to securely publish Python packages directly via ActiveState’s Platform.
Become a trusted author today: ow.ly/Z34i50RikiO
#ActiveState #TrustedPublisher #PyPI
The PSF is pleased to announce our participation in a new Open Initiative for #Cybersecurity Standards with Apache - The ASF and Eclipse Foundation to establish common specifications for secure #opensource development based on open source best practices #python
pyfound.blogspot.com/2024/04/new-op…