This week we interview Mike Fiedler, the PyPI Safety & Security Engineer at the Python Software Foundation (PSF).
We discuss the importance of security within the Python ecosystem and offering practical advice for Python developers to enhance their security awareness.
Highlights include a deep dive into PyPI security measures, the challenges of securing the Python ecosystem, tips for Python developers, and Mike's journey to his current and previous (DevOps) roles, emphasizing the blend of technical skills and mindset needed to tackle security and solving challenges problems effectively.
Enjoy this episode with Mike Fiedler!
Chapters:
00:00 Show intro
01:20 Intro to audience and stateless testing win
08:24 Transition into PyPI security and current role
17:43 Challenging securing the Python ecosystem
24:48 Tips for Python devs to be more security aware
27:18 PDM ad segment
27:44 Security tips cont'd
33:16 Solving a puzzling problem in production (mindset)
39:40 Psychological safe workplaces / blame vs accountability
44:18 Security trends, how to prepare, and resources
48:05 Books and wrap up
---
Pybites ad segment: apply for Python coaching here.
---
Show links:
- pytest-randomly
- pytest-socket
- Brian Okken's pytest content
- PyPI blog
- Trusted Publishers
- 2FA Required for PyPI
- git annotate
- Asimov Robot series
- Silo
- CPython 3.12.2 is SBOM-ified
- Trail of Bits blog
- Fastly blog
- Disaster recovery for Consul clusters (now this exists!)
- Bandit
- Pre-commit
Reach out to Mike here.
#160 - Unpacking Pydantic's Growth and the Launch of Logfire with Samuel Colvin
#159 - How Luis Palacios Transitioned from Blue Collar to Tech with Python & Mindset
#158 - Navigating Layoffs: Adopting the Right Mindset for Career Resilience
#157 - Code, Music, and Python Education: A Conversation with Christopher Bailey
#156 - Mindset, Networking, and Personal Growth in Technology Careers with Louise Oprel
#155 - Django, Open Source & Pycon Conferences, Paolo Melchiorre's Developer Odyssey
#154 - Mindset Lessons From Building Pybites and Its Future Vision
#152 - Will AI Replace Us Developers? No! But Using AI Tools Will Give You an Edge ...
#151 - Mastering Open Source: The Journey to FastAPI Expertise, One Issue at a Time
#150 - Steve Lott on Coding, Writing, and Technomad Living
#149 - Jacob Moyers: Motivation is Temporary, Discipline and Disagreeing With Yourself
#148 - Will McGugan: Rich, Textualize, Open Source and Developer Mindset
#147 - Chris Williams: The Art of Cloud Therapy and Embracing Vulnerability
#146 - Armin Ronacher: Flask 3.0, Open Source, Rust and Developer Mindset
#145 - Never Give Up! Persistence will be Key in 2024
#144 - Cassandra Babilya's Career Change Checklist
#143 - Mastering Python with Łukasz Langa: The Story Behind Core Development and Black
#142 - Will Frey: Becoming a Coach, Generators and Design Patterns
#141 - Wolf Vollprecht: Making Conda More Poetic With Pixi
Create your
podcast in
minutes
It is Free
Insight Story: Tech Trends Unpacked
Zero-Shot
Fast Forward by Tomorrow Unlocked: Tech past, tech future
Black Wolf Feed (Chapo Premium Feed Bootleg)
Bannon`s War Room