Open schlenk opened 4 months ago
It would be nice to use the SLSA framework to get provenance assertions for the release packages we put on PyPi.
See: https://sethmlarson.dev/python-and-slsa
No objections :)
tpazderka
commented
2 months ago tpazderka
commented
2 months ago
It would be nice to use the SLSA framework to get provenance assertions for the release packages we put on PyPi.
See: https://sethmlarson.dev/python-and-slsa