Topics tagged security

Topic	Replies	Views	Activity
Regularly disabling unused commit access to the cpython repo Committers security , github	8	806	November 25, 2025
Python 3.13.x SSL security changes Python Help security	14	9606	October 24, 2025
Attacks on dictionaries when the keys are integers Python Help security	23	1018	August 27, 2025
Add .github repository with a SECURITY.md file? Packaging security	4	326	August 17, 2025
mTLS connection with Strings/Buffers Python Help security	5	161	June 24, 2025
Announcement: 2FA now required for PyPI Announcements security	26	1869	April 24, 2025
Reviews requested for email security fixes Core Development security , review-request	0	155	December 2, 2024
The Python Software Foundation has been authorized by the CVE Program as a CVE Numbering Authority (CNA) PSF security	6	2318	November 20, 2024
Securely parsing XML with expat 2.6.0 or later Python Help help , security	0	90	August 3, 2024
Typosquatting, dependency confusion, supply chain attack, call it as you wish Packaging security	12	1371	May 6, 2024
Pip must notify people that they have been compromised by a malicious package Packaging security	19	2163	May 1, 2024
Trying to understand security backport policy Core Development security	7	702	April 25, 2024
Pathway to requiring OpenSSL 3 or newer in CPython? Core Development security	10	1900	April 17, 2024
CPython, PyPI, and many Python packages are not affected by the backdoor of xz Core Development security	6	3565	April 11, 2024
PyPI Malware Observation Report Outcomes - Private Preview Announcements security , PyPI	0	1208	March 20, 2024
Create and distribute Software Bill-of-Materials (SBOM) for Python artifacts Core Development security	29	5988	February 7, 2024
Python maillibs don't verify server certificates by default, which is documented behavior, but several open source projects failed to do this right and I like to see this fixed Ideas security	13	1769	February 5, 2024
How to hide or remove sensitive data from getting exposed in memory dump? Python Help help , security	2	883	January 30, 2024
Announcement: 2FA Requirement for PyPI 2024-01-01 Announcements security	0	2952	December 11, 2023
`ssl`: changing the default `SSLContext.verify_flags`? Core Development security	16	5364	November 28, 2023
How to word a warning about security uses in `urllib.parse` docs Core Development documentation , security	15	1821	May 3, 2023
Using SourceRank score to warn or limit packages Packaging documentation , security	17	1552	April 30, 2023
Sprint recording: Dustin Ingram on Open Source Security for CPython Committers sprint , security , presentation	4	563	October 20, 2023