Explore the integration of The Update Framework (TUF) into the Python Package Index (PyPI) in this 25-minute conference talk from EuroPython 2024. Delve into the challenges of implementing secure package delivery and updates, focusing on PEP 458's decade-long journey to enhance PyPI's security. Learn about the Repository Service For TUF (RSTUF), a new tool simplifying TUF implementation in package repositories. Gain insights into RSTUF's evolution and its role in advancing TUF adoption in Warehouse and other platforms. Receive primers on TUF, PEP 458, and Warehouse to better understand the context and significance of this development in Python package management security.
TUF Joins PyPI - Securing Package Delivery with The Update Framework
EuroPython Conference via YouTube
Overview
Syllabus
It’s happening: TUF joins PyPI (Warehouse) — Kairo de Araujo, Lukas Pühringer
Taught by
EuroPython Conference
Related Courses
-
PEP 458 - A Solution Not Only for PyPI
-
Implementing PEP 458 to Secure PyPI Downloads
-
Securing Content Distribution with RSTUF, an Incubating OpenSSF Project
-
Operating a Production TUF Repository
-
Improving Package Repository Security - From White Papers to Practice
-
Securing Content Distribution with The Update Framework - TUF
