Explore critical supply chain security challenges facing Python developers in this 20-minute PyCon Israel conference talk that examines the widespread use of open-source packages and models, while highlighting the concerning lack of security validation practices. Learn about real-world attacks targeting Python package ecosystems and gain practical recommendations for implementing robust security measures to protect your development pipeline from malicious threats in the PyPi repository.
Python Package Security: Understanding PyPI Supply Chain Risks and Mitigation
PyCon Israel via YouTube
Overview
Syllabus
Eugene Rojavski - Malicious Needle in a Haystack - PyPi Security Pitfalls
Taught by
PyCon Israel
Related Courses
-
Developer Security Champion: Supply Chain Security
-
Enterprise Security Leadership: Understanding Supply Chain Security
-
DevOps with GitHub and Azure: Implementing Software Supply Chain Security with GitHub
-
Securing Python Projects Supply Chain
-
GitHub Supply Chain Security Using GitGat
-
Secure Software Supply Chains for Python
