Setting Your Python Working Environment, the Right Way
Python packages from PyPI can extend functionality.
Python virtual environments help manage package dependencies.
Finding the top pytest plugins
The article discusses the top downloaded pytest plugins based on recent data, highlighting their significance in Python testing.
Step-by-Step Guide to Publishing Your First Python Package on PyPI Using Poetry: Lessons Learned | HackerNoon
Creating and publishing a Python package to PyPI using Poetry involves steps like preparing an account, generating an API token, and setting up a project with dependencies.
TLS Client: Hello >
PyPI now supports digital attestations for verifying links to source repositories, enhancing trust in package integrity.
Setting Your Python Working Environment, the Right Way
Python packages from PyPI can extend functionality.
Python virtual environments help manage package dependencies.
Finding the top pytest plugins
The article discusses the top downloaded pytest plugins based on recent data, highlighting their significance in Python testing.
Step-by-Step Guide to Publishing Your First Python Package on PyPI Using Poetry: Lessons Learned | HackerNoon
Creating and publishing a Python package to PyPI using Poetry involves steps like preparing an account, generating an API token, and setting up a project with dependencies.
TLS Client: Hello >
PyPI now supports digital attestations for verifying links to source repositories, enhancing trust in package integrity.
A new supply chain attack technique called Revival Hijack targets the PyPI registry, allowing attackers to exploit existing packages for malicious intent.
Sonatype discovered a malicious PyPI package 'pytoileur' within a larger campaign, showcasing the importance of robust security measures in the coding community.
Links and References For My PyCon US Keynote
PyPI overhaul from 2017-2018 improved infrastructure with Mozilla grant and Warehouse shift.
Release 1.5.0 of python-sql
Python-sql 1.5.0 release includes MERGE query, 'UPSERT' support, GROUPING SETS, CUBE, ROLLUP for SQL queries.
Debugging with your eyes
NumFOCUS facing challenges and changes in governance structure.
PyPI undergoes security audit by Trail of Bits.
Install and Execute Python Applications Using pipx - Real Python
pipx creates and manages virtual environments automatically to isolate dependencies of installed Python packages.
pipx adds symbolic links to command-line scripts of installed packages for direct execution without Python interpreter.
PyPI suspends registrations amid malware attack
PyPI has suspended new project creation due to a malware upload campaign.
Attackers are using typosquatting to distribute malicious Python packages for data theft.
Announcing a PyPI Support Specialist
PyPI has seen significant growth with over half a million packages and a 57% increase in 2022.
Increased growth has necessitated hiring more staff to manage security needs, account issues, and community frustrations.
How to Publish a Python Package to PyPI - Mouse Vs Python
Publish Python packages on PyPI with proper structure and documentation.