PyPI repo to distribute 4000 security keys to maintainers of critical projects in 2FA drive


For “important projects,” the Python Package Index is implementing two-factor authentication using physical security keys.

As the threat to software supply chains grows, the repository is giving out 4,000 Titan Security Keys to qualified maintainers. These maintainers can use a promo code to get two free keys, either USB-C or USB-A. The keys were given by the Google Open Source Security Team, a supporter of the PyPI-maintaining Python Software Foundation. Read More…