I'm really glad this is being taken seriously. It's often been an uphill battle to convince people that Python supply chain security is a serious issue.<p>In the ML (now called AI) space for example, it's not uncommon to download random binaries from the internet containing model weights, scripts, etc. Sometimes even at runtime (!!!) Lots of bad practices across the industry there that wouldn't be tolerated in other contexts.
I haven't listened to the interview but are they going to add namespaces? That's the only good solution I can see to the current unfixed dependency confusion issue.<p>By that I mean, you want to use a private pip repo in your company, you upload `yourcompany_secretproject` to it and tell people to install it. Now the only way to prevent yourself being hacked is to publicly register an empty package `yourcompany_secretproject` on pypi.org. Oh and also hope the admins don't notice it and remove it because it's empty (which they have said they will).<p>Insane situation.
This is a great interview! Mike (and Seth, who is tasked with addressing the non-PyPI security needs of the Python ecosystem) have been doing a great job both documenting and expanding the Python ecosystem’s security capabilities and outstanding needs.<p>PyPI’s security features have undergone a significant expansion since the backend rewrite back in 2017; I <i>think</i> it’s accurate to say that, since then, it has consistently been on the forefront (amongst its peer indices) in terms of adding scopeable API tokens, MFA, secret scanning, and most recently trusted publishing).<p>(FD: The company I work for helped add some of those features[1][2].)<p>[1]: <a href="https://blog.trailofbits.com/2019/06/20/getting-2fa-right-in-2019/" rel="nofollow noreferrer">https://blog.trailofbits.com/2019/06/20/getting-2fa-right-in...</a><p>[2]: <a href="https://blog.trailofbits.com/2023/05/23/trusted-publishing-a-new-benchmark-for-packaging-security/" rel="nofollow noreferrer">https://blog.trailofbits.com/2023/05/23/trusted-publishing-a...</a>
Thank you so much for including a transcript!!! I hate when audio or video content doesn't, I personally prefer to read rather than listen but there are plenty of users with disabilities who don't even have an option.<p>transcript link: <a href="https://talkpython.fm/episodes/transcript/435/pypi-security" rel="nofollow noreferrer">https://talkpython.fm/episodes/transcript/435/pypi-security</a>