Developer Tech

Python targets phantom dependencies threat with SBOM proposal

A whitepaper from the Python Software Foundation’s (PSF) own Security Developer-in-Residence, Seth Larson, sounds the alarm on “phantom dependencies” and offers a solution with the PEP 770 proposal ...
Yahoo Finance

Introducing Chainguard Libraries for Python: Malware-Resistant Dependencies Built Entirely ...

Today, more than half of the world's developers rely on Python, a programming language that has become the foundation of modern AI and machine learning applications. As the popularity of Python has ...
Developer Tech

Chainguard rebuilds Python libraries to slam the door on malware

Chainguard Libraries for Python isn’t just another repository; it’s an index of Python dependencies engineered to be resistant to malware. The secret sauce? Building every single one securely from its ...
InfoWorld

New Python lock file format will specify dependencies

Human-readable and machine-generated lock file will specify what direct and indirect dependencies should be installed into a Python environment. Python’s builders have accepted a proposal to create a ...