Security

Python’s package index has been the target of supply chain attacks for years. The handbook covers the modern defenses — Trusted Publishing, digital attestations, hash pinning, vulnerability scanning, and lint rules that catch unsafe code patterns.

Supply chain defense

Scan and lint

More Security pages

Everything else tagged security, grouped by section. Pages featured above are not repeated here.

How To

• How to pin GitHub Actions by SHA for Python projects
• How to upgrade setup-uv from v7 to v8
• How to Verify Dependencies with Hashes in uv

Explanation

• What is PyPI (Python Package Index)?
• Why Installing a Python Package Can Run Code
• Why pylock.toml Includes Digital Attestations

From the blog

Posts tagged security.

• Apr 16, 2026

  Astral told you how they secure uv. Here's what to keep.

  Astral published a detailed writeup of how they secure their org. Most of it is team-scale GitHub policy. Four things translate directly to a solo Python maintainer.

• Apr 16, 2026

  PyPI's Second Audit Found 14 Bugs. Two Remain.

  Trail of Bits audited PyPI. Twelve issues were patched, two accepted. The accepted ones tell you more about PyPI than the twelve that were fixed.

• Apr 8, 2026

  LLM-Powered Copycats Are Flooding PyPI

  A developer published his first PyPI package. Within hours, three AI-generated clones appeared. The pattern is spreading, and it's a supply chain risk.

• Mar 24, 2026

  LiteLLM Got Owned, and Your Dependencies Might Be Next

  A supply chain attack hit litellm on PyPI, stealing credentials and deploying backdoors. Bernát Gábor's guide shows how to defend against exactly this kind of threat.

• Feb 6, 2026

  Pydantic Monty: A Secure Python Interpreter for AI Agents

  Pydantic's Monty is a minimal Rust-based Python interpreter for safely executing LLM-generated code without containers.

• Mar 14, 2025

  Dependabot Now Supports uv

  GitHub's Dependabot now officially supports uv for automated dependency version updates and security monitoring.