[Catalog-sig] PyPI/pip security: waiting for input
Trishank Karthik Kuppusamy
tk47 at students.poly.edu
Mon Mar 11 18:09:41 CET 2013
On 3/11/13 10:17 AM, Justin Cappos wrote:
> Yes, we're finishing this up now. We have a working demo with TUF
> signing PyPI metadata and pip (integrated with TUF) correctly checking
> signatures, etc.
Yes, and we are excited to be sharing this very soon!
> Trishank: when do you plan to share this? Does Kon still have some
> integration tests to write to show we meet the use cases from Giovanni's
I have the demo up and running, and I just need to get the documentation
together. Complicating this is that I have a midterm tomorrow, but I
should have the basic documentation together by today. Let me get back
to you then!
More information about the Catalog-SIG