Topics tagged security

Topic	Replies	Views	Activity
Regularly disabling unused commit access to the cpython repo Committers security , github	8	689	November 25, 2025
Python 3.13.x SSL security changes Python Help security	14	8441	October 24, 2025
Attacks on dictionaries when the keys are integers Python Help security	23	980	August 27, 2025
Add .github repository with a SECURITY.md file? Packaging security	4	296	August 17, 2025
mTLS connection with Strings/Buffers Python Help security	5	140	June 24, 2025
Announcement: 2FA now required for PyPI Announcements security	26	1831	April 24, 2025
Reviews requested for email security fixes Core Development security , review-request	0	154	December 2, 2024
The Python Software Foundation has been authorized by the CVE Program as a CVE Numbering Authority (CNA) PSF security	6	2305	November 20, 2024
Securely parsing XML with expat 2.6.0 or later Python Help help , security	0	89	August 3, 2024
Typosquatting, dependency confusion, supply chain attack, call it as you wish Packaging security	12	1334	May 6, 2024
Pip must notify people that they have been compromised by a malicious package Packaging security	19	2127	May 1, 2024
Trying to understand security backport policy Core Development security	7	694	April 25, 2024
Pathway to requiring OpenSSL 3 or newer in CPython? Core Development security	10	1871	April 17, 2024
CPython, PyPI, and many Python packages are not affected by the backdoor of xz Core Development security	6	3552	April 11, 2024
PyPI Malware Observation Report Outcomes - Private Preview Announcements security , PyPI	0	1197	March 20, 2024
Create and distribute Software Bill-of-Materials (SBOM) for Python artifacts Core Development security	29	5966	February 7, 2024
Python maillibs don't verify server certificates by default, which is documented behavior, but several open source projects failed to do this right and I like to see this fixed Ideas security	13	1749	February 5, 2024
How to hide or remove sensitive data from getting exposed in memory dump? Python Help help , security	2	858	January 30, 2024
Announcement: 2FA Requirement for PyPI 2024-01-01 Announcements security	0	2947	December 11, 2023
`ssl`: changing the default `SSLContext.verify_flags`? Core Development security	16	5200	November 28, 2023
How to word a warning about security uses in `urllib.parse` docs Core Development documentation , security	15	1801	May 3, 2023
Using SourceRank score to warn or limit packages Packaging documentation , security	17	1529	April 30, 2023
Sprint recording: Dustin Ingram on Open Source Security for CPython Committers sprint , security , presentation	4	559	October 20, 2023