Heykuki News
Top
New
Best
Ask
Show
Jobs
Toggle theme
Login
Top
New
Best
Ask
Show
Jobs
1.
▲
PyPI Was Subpoenaed
(blog.pypi.org)
1153 points
quercusa
3 years ago
597 comments
2.
▲
PyPI now supports digital attestations
(blog.pypi.org)
218 points
miketheman
2 years ago
186 comments
3.
▲
Removing PGP from PyPI
(blog.pypi.org)
187 points
dlor
3 years ago
187 comments
4.
▲
Introducing 'Trusted Publishers'
(blog.pypi.org)
180 points
BerislavLopac
3 years ago
71 comments
5.
▲
PyPI has completed its first security audit
(blog.pypi.org)
137 points
miketheman
3 years ago
22 comments
6.
▲
PyPI Preventing Domain Resurrection Attacks
(blog.pypi.org)
136 points
pabs3
10 months ago
52 comments
7.
▲
PyPI Prohibits inbox.ru email domain registrations
(blog.pypi.org)
131 points
miketheman
a year ago
105 comments
8.
▲
PyPI Requires 2FA for New User Registrations
(blog.pypi.org)
112 points
miketheman
3 years ago
73 comments
9.
▲
Analysis of supply-chain attack on Ultralytics
(blog.pypi.org)
98 points
SethMLarson
a year ago
31 comments
10.
▲
PyPI Blog: Project Quarantine
(blog.pypi.org)
92 points
miketheman
a year ago
60 comments
11.
▲
PyPI in 2025: A Year in Review
(blog.pypi.org)
79 points
miketheman
5 months ago
42 comments
12.
▲
PyPI Blog: Token Exfiltration Campaign via GitHub Actions Workflows
(blog.pypi.org)
76 points
miketheman
9 months ago
20 comments
13.
▲
Removing PGP from PyPI (2023)
(blog.pypi.org)
72 points
harporoeder
2 years ago
71 comments
14.
▲
Welcome to the PyPI Blog
(blog.pypi.org)
55 points
woodruffw
3 years ago
9 comments
15.
▲
Preventing ZIP parser confusion attacks on Python package installers
(blog.pypi.org)
48 points
miketheman
10 months ago
17 comments
16.
▲
PyPI will require 2FA by the end of 2023
(blog.pypi.org)
47 points
genericlemon24
3 years ago
80 comments
17.
▲
PyPI Organizations (2023)
(blog.pypi.org)
42 points
calpaterson
a year ago
13 comments
18.
▲
PyPI Now Supports Project Archival
(blog.pypi.org)
36 points
woodruffw
a year ago
discuss
19.
▲
Introducing PyPI Organizations
(blog.pypi.org)
35 points
samwillis
3 years ago
4 comments
20.
▲
PyPI Reports on Inbound Malware Notices
(blog.pypi.org)
26 points
miketheman
3 years ago
discuss
21.
▲
Reducing Stored IP Data in PyPI
(blog.pypi.org)
15 points
miketheman
3 years ago
1 comment
22.
▲
Securing PyPI Accounts via Two-Factor Authentication
(blog.pypi.org)
10 points
miketheman
3 years ago
1 comment
23.
▲
PyPI Phishing Attack: Incident Report
(blog.pypi.org)
8 points
miketheman
10 months ago
1 comment
24.
▲
PyPI Enforces Token Use for Uploads from Users with 2FA
(blog.pypi.org)
8 points
miketheman
3 years ago
discuss
25.
▲
PyPI has completed its second audit
(blog.pypi.org)
6 points
miketheman
2 months ago
discuss
26.
▲
PyPI: Preventing Domain Resurrection Attacks
(blog.pypi.org)
5 points
miketheman
10 months ago
2 comments
27.
▲
PyPI: Expanding Trusted Publisher Support
(blog.pypi.org)
5 points
woodruffw
2 years ago
1 comment
28.
▲
Prohibiting Outlook email domains – PyPI
(blog.pypi.org)
5 points
aragilar
2 years ago
discuss
29.
▲
2FA Required for PyPI
(blog.pypi.org)
4 points
miketheman
2 years ago
discuss
30.
▲
GitHub now scans public issues for PyPI secrets
(blog.pypi.org)
4 points
miketheman
3 years ago
discuss
More