From 1ed0ed6b9c126058c7b4abe30bdb953c20cdaafb Mon Sep 17 00:00:00 2001 From: Matthew Feickert Date: Sat, 13 Jul 2024 14:24:21 -0700 Subject: [PATCH] nit: Don't use unicode charecters when ascii version exists --- spec-0008/index.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/spec-0008/index.md b/spec-0008/index.md index 553cba76..238b4c7f 100644 --- a/spec-0008/index.md +++ b/spec-0008/index.md @@ -24,7 +24,7 @@ Briefly and clearly describe the recommendation. https://github.com/scientific-python/summit-2024/issues/9 --> -Open source libraries constitute a significant portion of the world’s digital infrastructure. Securing the Open Source supply chain (OSSC) is therefore an increasing concern, with examples of sophisticated attacks against the ecosystem (e.g., the 2024 [`xz` utils backdoor](https://en.wikipedia.org/wiki/XZ_Utils_backdoor)) and [malware attacks on PyPI](https://blog.pypi.org/posts/2024-04-10-domain-abuse/) highlighting the need for supply chain security to be taken seriously. +Open source libraries constitute a significant portion of the world's digital infrastructure. Securing the Open Source supply chain (OSSC) is therefore an increasing concern, with examples of sophisticated attacks against the ecosystem (e.g., the 2024 [`xz` utils backdoor](https://en.wikipedia.org/wiki/XZ_Utils_backdoor)) and [malware attacks on PyPI](https://blog.pypi.org/posts/2024-04-10-domain-abuse/) highlighting the need for supply chain security to be taken seriously. The Python Software Foundation (PSF) is also taking the importance of the OSSC seriously, as demonstrated by the [creation of the PSF Security Developer in Residence position in 2023](https://pyfound.blogspot.com/2023/06/announcing-our-new-security-developer.html). With the [Supply-chain Levels for Software Artifacts (SLSA) framework](https://slsa.dev/) and [OpenID Connect (OIDC)](https://openid.net/developers/how-connect-works/) standard being widely adopted, several high level developer tools, maintained by professional security teams, have been created with clear recommendations on how to use them.