20
2
PyPI and Shai-Hulud: Staying Secure Amid Emerging Threats (pypi.org)
2
PyPI: Trusted Publishing Growth, Now for GitLab Self-Managed and Organizations (pypi.org)
2
White Paper: Slippery Zips and Sticky Tar-Pits: Security and Archives (alpha-omega.dev)
3
Open Infrastructure Is Not Free: PyPI, the PSF, and Sustainability (pyfound.blogspot.com)
1
Datadog supports PyPI and the Python community through observability (datadoghq.com)
8
PyPI Blog: Token Exfiltration Campaign via GitHub Actions Workflows (pypi.org)
3
PyPI: Preventing Domain Resurrection Attacks (pypi.org)
2
PyPI now serves project status markers in API responses (pypi.org)
21
Preventing ZIP parser confusion attacks on Python package installers (pypi.org)
3
PyPI Phishing Attack: Incident Report (pypi.org)
2
PyPI Users Email Phishing Attack (pypi.org)
100
PyPI Prohibits inbox.ru email domain registrations (pypi.org)
2
AWS Lambda standardizes billing for INIT Phase (amazon.com)
15
PyPI Blog: Project Quarantine (pypi.org)
68
PyPI now supports digital attestations (pypi.org)
3
PyPI Safety and Security Engineer: First Year in Review (pypi.org)
1
PyPI Blog: Malware Distribution and Domain Abuse (pypi.org)
3
2FA Required for PyPI (pypi.org)
2
2FA Requirement for PyPI begins 2024-01-01 (pypi.org)
1
Support Python in 2023 (fundraiser and membership drive) (python.org)
1
TestPyPI now requires 2FA in advance of PyPI 2024 requirement (pypi.org)
43
PyPI has completed its first security audit (pypi.org)
5
PyPI Reports on Inbound Malware Notices (pypi.org)
2
GitHub now scans public issues for PyPI secrets (pypi.org)
39
PyPI Requires 2FA for New User Registrations (pypi.org)
40
PSF Hires PyPI Safety and Security Engineer (pyfound.blogspot.com)
4
PyPI Enforces Token Use for Uploads from Users with 2FA (pypi.org)
3
Reducing Stored IP Data in PyPI (pypi.org)
4
Securing PyPI Accounts via Two-Factor Authentication (pypi.org)
2
Python 3.10 runtime now available in AWS Lambda (amazon.com)
1