TUF Joins PyPI - Securing Package Delivery with The Update Framework
Offered By: EuroPython Conference via YouTube
Course Description
Overview
Explore the integration of The Update Framework (TUF) into the Python Package Index (PyPI) in this 25-minute conference talk from EuroPython 2024. Delve into the challenges of implementing secure package delivery and updates, focusing on PEP 458's decade-long journey to enhance PyPI's security. Learn about the Repository Service For TUF (RSTUF), a new tool simplifying TUF implementation in package repositories. Gain insights into RSTUF's evolution and its role in advancing TUF adoption in Warehouse and other platforms. Receive primers on TUF, PEP 458, and Warehouse to better understand the context and significance of this development in Python package management security.
Syllabus
It’s happening: TUF joins PyPI (Warehouse) — Kairo de Araujo, Lukas Pühringer
Taught by
EuroPython Conference
Related Courses
Toto-Ally TUF: Simple Tools for a Secure Software Supply ChainLinux Foundation via YouTube Software Supply Chain Security Case Study at Anaconda
Linux Foundation via YouTube Securing the Container Supply Chain with Notary, TUF, and Gatekeeper
Linux Foundation via YouTube Improving Package Repository Security - From White Papers to Practice
Linux Foundation via YouTube Container Security: Supply Chain, Authorization, and Runtime Protection
Docker via YouTube