Techie Saturday

This techie Saturday I enjoied reviewing EuroPython submissions, and discovered some stuff I didn’t know like [LocalStack](https://github.com/localstack/localstack), a fully functional local AWS cloud stack for dev stuff.

I then  spent some time reading some friends’ posts on Linkedin, discovering that Google launched a python/java package registry to fight supply chain attacks, google launched a couple of services:

• an API to get security info on packages https://deps.dev/ (but it lacks OAS3 and purl support for now)
• a curated artifact registry for java/python publishing certified packages https://cloud.google.com/blog/products/identity-security/google-cloud-assured-open-source-software-service-now-ga this registry uses SPDX instead of CycloneDX…

April 15 2023 | Politica | Commenta per primo! »