[Catalog-sig] PyPI/pip security: waiting for input

Trishank Karthik Kuppusamy tk47 at students.poly.edu
Mon Mar 11 18:09:41 CET 2013

Hello everyone,

On 3/11/13 10:17 AM, Justin Cappos wrote:
> Yes, we're finishing this up now.   We have a working demo with TUF
> signing PyPI metadata and pip (integrated with TUF) correctly checking
> signatures, etc.

Yes, and we are excited to be sharing this very soon!

> Trishank: when do you plan to share this?   Does Kon still have some
> integration tests to write to show we meet the use cases from Giovanni's
> document?

I have the demo up and running, and I just need to get the documentation 
together. Complicating this is that I have a midterm tomorrow, but I 
should have the basic documentation together by today. Let me get back 
to you then!


More information about the Catalog-SIG mailing list