@hugovk and I would like to promote Seth Larson (@sethmlarson on GitHub) to the Python core team.
Seth is the PSF Security Developer-in-Residence and has done a tremendous amount of work to improve both the security of CPython and its security processes. For example, he has authored three PEPs:
- PEP 761 – Deprecating PGP signatures for CPython artifacts
- PEP 770 – Improving measurability of Python packages with Software Bill-of-Materials
- PEP 811 – Defining Python Security Response Team membership and responsibilities
The last of these formalised the Python Security Response Team (PSRT) and brought nine new people onto the team since February; helping us deal with the recent increase in vulnerability reports. Seth also helps lead and manage the team.
Seth has authored numerous merged pull requests across the Python organisation, ranging from security fixes in CPython to various improvements to Python’s infrastructure and tooling, including improvements to the security of the CPython release process. Seth was also promoted to the triage team in late 2023 and has participated in a large number of issues.
In addition, he regularly blogs about security for both CPython and the wider Python ecosystem and co-organised the Trailblazing Python Security track at PyCon US this year. Seth is also consistently helpful and constructive in discussions, reviews, and community interactions. We already have a lot of trust in Seth, and he is well-deserving of promotion to the core team.
- Promote Seth Larson
- Do not promote
I’m grateful for the opportunity to contribute back to the community that has done so much for me and others, thank you all 