Implementing PEP 458 to Secure PyPI Downloads
This summer, co-maintainer of Python-TUF Lukas Pühringer and I delivered a talk on implementing PEP 458 to secure PyPI Downloads at Europython 2022 Dublin, the...
Kairo Francisco de Araujo is an Open Source Software Engineer and a staff member of VMware’s Open Source Program Office (OSPO), working on the Security Supply Chain team. He is currently focused on PyPI.org, Python-TUF, and contributing to Tern Tools. As a Software and System Engineer, he has contributed to open source for almost a decade in the Infrastructure space such as Networking, Cloud, Virtualization, Storage Area Networks, and Storage Disks. Prior roles include System Engineer Specialist and Senior Software Engineer at IBM, ING, and ForeScout. Kairo hails from Brazil and lives in The Netherlands with his wife and three-year-old son, who loves listening to the Beatles and riding his bike. In his spare time, Kairo enjoys collecting Vinyl Records (he has many rare collectibles), and riding his road bike in group rides and with his family.
This summer, co-maintainer of Python-TUF Lukas Pühringer and I delivered a talk on implementing PEP 458 to secure PyPI Downloads at Europython 2022 Dublin, the...