From a1e1b98cacae52f557fc2a46ab256e8dcb72815e Mon Sep 17 00:00:00 2001
From: Sergey Matveev <stargrave@stargrave.org>
Date: Thu, 14 Nov 2024 22:50:52 +0300
Subject: [PATCH] =?utf8?q?=D0=9D=D0=BE=D0=B2=D1=8B=D0=B9=20=D0=BC=D0=B5?=
 =?utf8?q?=D1=85=D0=B0=D0=BD=D0=B8=D0=B7=D0=BC=20=D0=BF=D0=BE=D0=B4=D0=BF?=
 =?utf8?q?=D0=B8=D1=81=D0=B5=D0=B9=20=D0=BD=D0=B0=20PyPI?=
MIME-Version: 1.0
Content-Type: text/plain; charset=utf8
Content-Transfer-Encoding: 8bit

https://www.opennet.ru/opennews/art.shtml?num=62234
https://blog.pypi.org/posts/2024-11-14-pypi-now-supports-digital-attestations/
https://blog.trailofbits.com/2024/11/14/attestations-a-new-generation-of-signatures-on-pypi/
https://peps.python.org/pep-0740/
https://blog.trailofbits.com/2022/11/08/sigstore-code-signing-verification-software-supply-chain/
Ð Ð¿ÑÐ¾ÑÐ»Ð¾Ð¼ Ð³Ð¾Ð´Ñ Ð¾Ð½Ð¸ ÑÐ±ÑÐ°Ð»Ð¸ (b3b47ad4d00d6daefad47943d8f4eaafadfd4bed)
Ð¿Ð¾Ð´Ð´ÐµÑÐ¶ÐºÑ PGP Ð¿Ð¾Ð´Ð¿Ð¸ÑÐµÐ¹, ÑÐ´ÐµÐ»Ð°Ð² Ð½ÐµÐ²Ð¾Ð·Ð¼Ð¾Ð¶Ð½ÑÐ¼ "Ð¿ÐµÑÐµÐ´Ð°ÑÑ" Ð´Ð¾Ð²ÐµÑÐ¸Ñ Ð½Ð°Ð¿ÑÑÐ¼ÑÑ
Ð¾Ñ Ð°Ð²ÑÐ¾ÑÐ° ÐºÐ¾Ð½ÐµÑÐ½Ð¾Ð¼Ñ Ð¿Ð¾Ð»ÑÐ·Ð¾Ð²Ð°ÑÐµÐ»Ñ Ð¿Ð°ÐºÐµÑÐ°. Ð¢ÐµÐ¿ÐµÑÑ Ð¶Ðµ Ð¾Ð½Ð¸ ÑÐ´ÐµÐ»Ð°Ð»Ð¸ ÑÐ¸ÑÑÐµÐ¼Ñ,
Ð¿Ð¾ÑÑÑÐ¾ÐµÐ½Ð½ÑÑ Ð²Ð¾ÐºÑÑÐ³ X.509, Certificate Transparency Ð¸ OpenID Connect
ÑÑÐµÑÑÐµÐ³Ð¾ Ð»Ð¸ÑÐ°.
-- 
2.50.0