Clik here to view.
Patching the libwebp vulnerability across the Python ecosystem
Patching the libwebp vulnerability across the Python ecosystemAbout• Blog• Newsletter• LinksPatching the libwebp vulnerability across the Python ecosystemPublished 2023-10-25by Seth Larson Reading...
View ArticleClik here to view.
“For You” is not for me
“For You” is not for meAbout• Blog• Newsletter• Links“For You” is not for mePublished 2023-10-31by Seth Larson Reading time: minutes I derive a lot of joy and meaning from being productive and engaging...
View ArticleClik here to view.
OSS Security RFI, Guide to become a CNA, and PEP 639
OSS Security RFI, Guide to become a CNA, and PEP 639About• Blog• Newsletter• LinksOSS Security RFI, Guide to become a CNA, and PEP 639Published 2023-11-07by Seth Larson Reading time: minutes This...
View ArticleClik here to view.
Querying every file in every release on the Python Package Index
Querying every file in every release on the Python Package IndexAbout• Blog• Newsletter• LinksQuerying every file in every release on the Python Package IndexPublished 2023-11-14by Seth Larson Reading...
View ArticleClik here to view.
Proposal for Software Bill-of-Materials for CPython
Proposal for Software Bill-of-Materials for CPythonAbout• Blog• Newsletter• LinksProposal for Software Bill-of-Materials for CPythonPublished 2023-11-22by Seth Larson Reading time: minutes This...
View ArticleClik here to view.
Review of the Security Developer-in-Residence role in 2023
Review of the Security Developer-in-Residence role in 2023About• Blog• Newsletter• LinksReview of the Security Developer-in-Residence role in 2023Published 2023-12-06by Seth Larson Reading time:...
View ArticleClik here to view.
Python listed as memory-safe language in latest CISA recommendations
Python listed as memory-safe language in latest CISA recommendationsAbout• Blog• Newsletter• LinksPython listed as memory-safe language in latest CISA recommendationsPublished 2023-12-14by Seth Larson...
View ArticleClik here to view.
Mahjong tiles and Unicode variation selectors
Mahjong tiles and Unicode variation selectorsAbout• Blog• Newsletter• LinksMahjong tiles and Unicode variation selectorsPublished 2023-12-18by Seth Larson Reading time: minutes It's been a while since...
View ArticleClik here to view.
Security Developer-in-Residence Weekly Report #22
Security Developer-in-Residence Weekly Report #22About• Blog• Newsletter• LinksSecurity Developer-in-Residence Weekly Report #22Published 2023-12-20by Seth Larson Reading time: minutes This critical...
View ArticleClik here to view.
AI and Wonder
AI and WonderAbout• Blog• Newsletter• LinksAI and WonderPublished 2023-12-27by Seth Larson Reading time: minutes On Christmas Day, Brandt Bucher, a CPython core developer, created a wonderful thing....
View ArticleClik here to view.
Security Developer-in-Residence Weekly Report #23
Security Developer-in-Residence Weekly Report #23About• Blog• Newsletter• LinksSecurity Developer-in-Residence Weekly Report #23Published 2023-12-28by Seth Larson Reading time: minutes This critical...
View ArticleClik here to view.
2023 year in review
2023 year in reviewAbout• Blog• Newsletter• Links2023 year in reviewPublished 2023-12-31by Seth Larson Reading time: minutes 2023 was a great year! So much happened, but a few things in particular...
View ArticleClik here to view.
Security Developer-in-Residence Weekly Report #24
Security Developer-in-Residence Weekly Report #24About• Blog• Newsletter• LinksSecurity Developer-in-Residence Weekly Report #24Published 2024-01-09by Seth Larson Reading time: minutes This critical...
View ArticleClik here to view.
urllib3 is fundraising for HTTP/2 support
urllib3 is fundraising for HTTP/2 supportAbout• Blog• Newsletter• Linksurllib3 is fundraising for HTTP/2 supportPublished 2024-01-16by Seth Larson Reading time: minutes TLDR:urllib3 is raising ~$40,000...
View ArticleClik here to view.
Defending against the PyTorch supply chain attack PoC
Defending against the PyTorch supply chain attack PoCAbout• Blog• Newsletter• LinksDefending against the PyTorch supply chain attack PoCPublished 2024-01-17by Seth Larson Reading time: minutes This...
View ArticleClik here to view.
Removing maintainers from open source projects
Removing maintainers from open source projectsAbout• Blog• Newsletter• LinksRemoving maintainers from open source projectsPublished 2024-01-23by Seth Larson Reading time: minutes Here's a tough but...
View ArticleClik here to view.
Releases on the Python Package Index are never “done”
Releases on the Python Package Index are never “done”About• Blog• Newsletter• LinksReleases on the Python Package Index are never “done”Published 2024-01-24by Seth Larson Reading time: minutes This...
View ArticleClik here to view.
Security Developer-in-Residence Weekly Report #27
Security Developer-in-Residence Weekly Report #27About• Blog• Newsletter• LinksSecurity Developer-in-Residence Weekly Report #27Published 2024-01-31by Seth Larson Reading time: minutes This critical...
View ArticleClik here to view.
CPython 3.12.2 is SBOM-ified!
CPython 3.12.2 is SBOM-ified!About• Blog• Newsletter• LinksCPython 3.12.2 is SBOM-ified!Published 2024-02-08by Seth Larson Reading time: minutes This critical role would not be possible without funding...
View ArticleClik here to view.
Challenges while building SBOM infrastructure for CPython
Challenges while building SBOM infrastructure for CPythonAbout• Blog• Newsletter• LinksChallenges while building SBOM infrastructure for CPythonPublished 2024-02-14by Seth Larson Reading time: minutes...
View Article