"We are thrilled to announce that Anthropic has entered into a two-year partnership with the Python Software Foundation (PSF) to contribute a landmark total of $1.5 million to support the foundation's work, with an emphasis on Python ecosystem security. This investment will enable the PSF to make crucial security advances to CPython and the Python Package Index (PyPI) benefiting all users, and it will also sustain the foundation's core work supporting the Python language, ecosystem, and global community."
"Anthropic's funds will enable the PSF to make progress on our security roadmap, including work designed to protect millions of PyPI users from attempted supply-chain attacks. Planned projects include creating new tools for automated proactive review of all packages uploaded to PyPI, improving on the current process of reactive-only review. We intend to create a new dataset of known malware that will allow us to design these novel tools, relying on capability analysis."
Anthropic has entered a two-year partnership with the Python Software Foundation to contribute $1.5 million focused on Python ecosystem security. The funding will enable security advances to CPython and the Python Package Index (PyPI) while sustaining core PSF work supporting the language, ecosystem, and global community. Planned security roadmap work targets protection of millions of PyPI users from supply-chain attacks through proactive measures. Projects include creating automated tools for proactive review of all packages uploaded to PyPI, building a dataset of known malware to drive capability-analysis-designed tools, and developing outputs transferable across open source package repositories.
Read at Python Software Foundation Blog
Unable to calculate read time
Collection
[
|
...
]