home.social

Search

192 results for “sethmlarson”

  1. Seth Larson @[email protected] ·

    I'm running a “ #Security for #OpenSource Maintainers” space at #PyConUS 2026 again this year. Bring challenges, feedback, and your experiences with the security tooling and “landscape” to share and learn from others.

    Date will be announced closer to the event, hope to see you there!

    us.pycon.org/2026/events/open-

    #python #supplychain #pypi #oss

    #opensource #pyconus #security #python #supplychain #pypi
  2. Seth Larson @[email protected] ·

    RE: mastodon.social/@andrewnez/116

    Workflow security continues to be a common cause of compromises of open source projects.

    If you're using GitHub Actions and don't want this to happen to your project: use Zizmor and treat the findings seriously, especially insecure triggers and user-controllable template injections.

    docs.zizmor.sh

    #github #actions #security #oss #opensource #python

    #github #actions #security #oss #opensource #python
  3. Seth Larson @[email protected] ·

    pip 26.1 is an incredible release, thank you to the pip maintainers!! 💜

    – Relative dependency cooldown support!
    – Installing from pylock.toml
    – Multiple security fixes

    Read the full blog post by @ichard26

    ichard26.github.io/blog/2026/0

    #python #pypi #pip #security #oss #opensource

    #python #pypi #pip #security #oss #opensource
  4. Seth Larson @[email protected] ·

    Happy #FediDonutFriday ! 🍩🍩

    #fedidonutfriday
  5. Seth Larson @[email protected] ·

    #GoodFirstIssue adding support for relative dependency cool-downs to pip. This would be a massive security improvement for users who can then set-and-forget a reasonable cooldown duration in their global pip config.

    github.com/pypa/pip/issues/136

    #opensource #security #oss #python

    #goodfirstissue #opensource #security #oss #python
  6. Seth Larson @[email protected] ·

    #GoodFirstIssue adding support for relative dependency cool-downs to pip. This would be a massive security improvement for users who can then set-and-forget a reasonable cooldown duration in their global pip config.

    github.com/pypa/pip/issues/136

    #opensource #security #oss #python

    #goodfirstissue #opensource #security #oss #python
  7. Seth Larson @[email protected] ·

    #GoodFirstIssue adding support for relative dependency cool-downs to pip. This would be a massive security improvement for users who can then set-and-forget a reasonable cooldown duration in their global pip config.

    github.com/pypa/pip/issues/136

    #opensource #security #oss #python

    #goodfirstissue #opensource #security #oss #python
  8. Seth Larson @[email protected] ·

    #GoodFirstIssue adding support for relative dependency cool-downs to pip. This would be a massive security improvement for users who can then set-and-forget a reasonable cooldown duration in their global pip config.

    github.com/pypa/pip/issues/136

    #opensource #security #oss #python

    #python #oss #security #opensource #goodfirstissue
  9. Seth Larson @[email protected] ·

    #GoodFirstIssue adding support for relative dependency cool-downs to pip. This would be a massive security improvement for users who can then set-and-forget a reasonable cooldown duration in their global pip config.

    github.com/pypa/pip/issues/136

    #opensource #security #oss #python

    #goodfirstissue #opensource #security #oss #python
  10. Seth Larson @[email protected] ·

    #FediDonutFriday maple bacon Valentine's Day edition! I've got some time away from computers coming up, and I'm looking forward to the break... phew

    #fedidonutfriday
  11. Seth Larson @[email protected] ·

    Interesting blog post about text classification using compression, specifically the new "compression.zstd" module contributed by @emmatyping

    maxhalford.github.io/blog/text

    #compression #zstd #zstandard #classification

    #compression #zstd #zstandard #classification
  12. Seth Larson @[email protected] ·

    Interesting blog post about text classification using compression, specifically the new "compression.zstd" module contributed by @emmatyping

    maxhalford.github.io/blog/text

    #compression #zstd #zstandard #classification

    #compression #zstd #zstandard #classification
  13. Seth Larson @[email protected] ·

    Interesting blog post about text classification using compression, specifically the new "compression.zstd" module contributed by @emmatyping

    maxhalford.github.io/blog/text

    #compression #zstd #zstandard #classification

    #compression #zstd #zstandard #classification
  14. Seth Larson @[email protected] ·

    Interesting blog post about text classification using compression, specifically the new "compression.zstd" module contributed by @emmatyping

    maxhalford.github.io/blog/text

    #compression #zstd #zstandard #classification

    #classification #zstandard #zstd #compression
  15. Seth Larson @[email protected] ·

    Interesting blog post about text classification using compression, specifically the new "compression.zstd" module contributed by @emmatyping

    maxhalford.github.io/blog/text

    #compression #zstd #zstandard #classification

    #compression #zstd #zstandard #classification
  16. Seth Larson @[email protected] ·

    I missed the first #FediDonutFriday of the year! 🍩 My next blog post will include many foods, including donuts, so here's a little preview (and peace offering for more donut Fridays in 2026)

    #gaming #nintendo #smashbros #kirbyairriders

    #fedidonutfriday #gaming #nintendo #smashbros #kirbyairriders
  17. Seth Larson @[email protected] ·

    I missed the first #FediDonutFriday of the year! 🍩 My next blog post will include many foods, including donuts, so here's a little preview (and peace offering for more donut Fridays in 2026)

    #gaming #nintendo #smashbros #kirbyairriders

    #fedidonutfriday #gaming #nintendo #smashbros #kirbyairriders
  18. Seth Larson @[email protected] ·

    I missed the first #FediDonutFriday of the year! 🍩 My next blog post will include many foods, including donuts, so here's a little preview (and peace offering for more donut Fridays in 2026)

    #gaming #nintendo #smashbros #kirbyairriders

    #fedidonutfriday #gaming #nintendo #smashbros #kirbyairriders
  19. Seth Larson @[email protected] ·

    I missed the first #FediDonutFriday of the year! 🍩 My next blog post will include many foods, including donuts, so here's a little preview (and peace offering for more donut Fridays in 2026)

    #gaming #nintendo #smashbros #kirbyairriders

    #kirbyairriders #smashbros #nintendo #gaming #fedidonutfriday
  20. Seth Larson @[email protected] ·

    I missed the first #FediDonutFriday of the year! 🍩 My next blog post will include many foods, including donuts, so here's a little preview (and peace offering for more donut Fridays in 2026)

    #gaming #nintendo #smashbros #kirbyairriders

    #fedidonutfriday #gaming #nintendo #smashbros #kirbyairriders
  21. Seth Larson @[email protected] ·
    CW: #uspol, upsetting imagery, crashed cars, injuries

    Just in case you've heard that ICE operations are "winding down" in Minneapolis and St. Paul. This happened just this morning:

    bsky.app/profile/andrewkarre.b

    #uspol #iceout #abolishice #mpls #mn #mnastodon

    #uspol #iceout #abolishice #mpls #mn #mnastodon
  22. Seth Larson @sethmlarson ·

    Cracking into some Fishwife x Fly By Jing chili crisp salmon tonight... 😋

    eatfishwife.com/products/smoke

    #tinnedfish
  23. Seth Larson @[email protected] ·

    Thanks to the @sovtechfund and #AlphaOmega I was able to attend #UNOpenSourceWeek 2025 🇺🇳 representing the @ThePSF and focusing on how maintaining, supporting, and securing #OpenSource is a non-negotiable part of worldwide Digital Public Infrastructure (DPI). The trip was an inspiring reminder how many incredibly smart and talented people are working on this problem together.

    #alphaomega #unopensourceweek #opensource
  24. Seth Larson @sethmlarson ·

    This model has me excited, web pages that asynchronously load and for a seamless experience for the user while allowing developers to use Python.

    kai.bi/post/run-python-program

    #python #pyodide
  25. Seth Larson @[email protected] ·

    I am interested in learning more about #passkeys (aka #passwordless). I've read a few older articles about how, due to the requirement of never allowing a "decrypted" key, passkeys are not portable across "providers".

    So if you want to move from an iPhone to Android and you have passkeys associated with your keyring there's no way to move those passkeys to your new phone, you'd be regenerating them all for every service. Is this still the case in 2025, or has progress been made on this front?

    #passkeys #passwordless
  26. Seth Larson @[email protected] ·

    #FediDonutFriday on a #PikminBloom Community Week walk! 🍩

    #fedidonutfriday #pikminbloom
  27. Seth Larson @sethmlarson ·

    I've successfully migrated from to @buttondown, took a few hours but mostly painless (and I like the subscribe form embed).

    #tinyletter
  28. Seth Larson @sethmlarson ·

    appears to be off the naughty list for Google Safe Browsing, hopefully that means I can continue using them as a newsletter service for the next article at least. Phew! 😰

    Still looking at alternatives, buttondown.email looks like a good one that lets you completely disable click tracking.

    #tinyletter
  29. Seth Larson @sethmlarson ·

    Looks like link tracking service is getting marked as malicious by Safe Browsing, so now all my newsletter links are getting shown as malicious... is this impacting anyone else using Tinyletter?

    #tinyletter #google
  30. Seth Larson @[email protected] ·

    It's scary to be "on pace" for being able to try all the new food items at the Minnesota #StateFair... Trina and I are at 20/41 new items tried and we have two of 4 visits remaining in the year 😬

    #statefair
Next page