1 repositorio
Security mechanisms for verifying the authenticity and integrity of software packages during distribution.
Distinct from Secure Distribution Packaging: Covers a combination of digital signatures for attestations and MFA/token management specifically for a package registry, which is broader than just packaging obfuscation or general auth.
Explore 1 awesome GitHub repository matching security & cryptography · Package Distribution Security. Refine with filters or upvote what's useful.
Warehouse is a Python Package Index implementation and distributed package registry. It serves as a central repository and web application for hosting, discovering, and distributing versioned Python software packages via a standardized API. The system functions as a multi-tenant package manager with a server implementation compatible with Python Package Index standards. It provides specialized infrastructure for software package hosting and an index for clients to discover and download specific library versions. The project incorporates comprehensive security and access control, including mu
Implements digital signature verification for package attestations and secure access control to protect the software supply chain.