[Catalog-sig] A modest proposal for securing PyPI with TUF

Trishank Karthik Kuppusamy tk47 at students.poly.edu
Mon Mar 18 07:15:41 CET 2013

On 3/13/13 8:11 PM, Trishank Karthik Kuppusamy wrote:
> Speaking of which, it may be the case that our design document for
> integrating PyPI with TUF may not be terribly easy to understand. (After
> all, you do need to understand TUF first, but TUF is fairly easy once
> you understand its main ideas.) I plan to publish a friendlier document
> which introduce TUF at a very high-level and instead discuss more
> pragmatic issues (such as workflows).

We presented a lightning talk on PyPI + TUF + pip at PyCon yesterday, 
and perhaps it would make things easier to understand:



More information about the Catalog-SIG mailing list