TUF Joins PyPI - Securing Package Delivery with The Update Framework

Explore the integration of The Update Framework (TUF) into the Python Package Index (PyPI) in this 25-minute conference talk from EuroPython 2024. Delve into the challenges of implementing secure package delivery and updates, focusing on PEP 458's decade-long journey to enhance PyPI's security. Learn about the Repository Service For TUF (RSTUF), a new tool simplifying TUF implementation in package repositories. Gain insights into RSTUF's evolution and its role in advancing TUF adoption in Warehouse and other platforms. Receive primers on TUF, PEP 458, and Warehouse to better understand the context and significance of this development in Python package management security.

It’s happening: TUF joins PyPI (Warehouse) — Kairo de Araujo, Lukas Pühringer