September 18, 2023 | Bilbao, Spain
View More Details & Registration

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for OpenSSF Day Europe 2023 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

This schedule is automatically displayed in Central European Summer Time (UTC +2). To see the schedule in your preferred timezone, please select from the drop-down menu to the right above "Filter by Date."

IMPORTANT NOTE: The timing of sessions is subject to change.

Monday, September 18 • 2:40pm - 3:10pm
We Make Python Safer Than Ever - Cheuk Ting Ho, OpenSSF & Seth Michael Larson, Python Software Foundation

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Python is one of the programming languages that has a huge open-source supply chain. There are over 400,000 Python packages on Python Package Index (PyPI) and many more on other registries. Making sure this and the wider Python ecosystem are secure is a huge job and requires consistent contributions. Thanks to OpenSSF’s Alpha-Omega project, we now have a PSF Security Developer-in-Residence whose responsibility includes a security audit of the PyPI codebase and infrastructure, improving security practices, and establishing metrics on security posture to show impact. In this talk, we will have the PSF Security Developer-in-Residence himself talk about the effort that has been put in and plans to make Python safer. We will also have one of the PSF board of directors talking about what this means for the Python community and as community members how we can contribute to this effort.

- Introduction of the OpenSSF Alpha-Omega project and the role of PSF Security Developer-in-Residence
- Challenges that the Python ecosystem is facing
- CPython and PyPI have come a long way and this is how we get here
- What else can be done? Onwards to the future of CPython and PyPI
- Why is it important to do this?
- As a Python user, what can I do?

avatar for Cheuk Ting Ho

Cheuk Ting Ho

Community Manager, OpenSSF
Before working in Developer Relations, Cheuk has been a Data Scientist in various companies which demands high numerical and programmatical skills, especially in Python. To follow her passion for the tech community, Cheuk is now the Developer Advocate at Anaconda. Cheuk also contributes... Read More →

Seth Michael Larson

Security Developer-in-Residence, Python Software Foundation
Seth is the Security Developer-in-Residence at the Python Software Foundation and is working on improving the security posture of projects like CPython, PyPI, and the broader Python ecosystem. Seth maintains multiple open source projects, most notably the lead maintainer of urllib3... Read More →

Monday September 18, 2023 2:40pm - 3:10pm CEST
3 Jauregia
  Breakout Sessions
  • Presentation Slides Attached Yes