Menu
Free Pack
Download BuildMaster Free Trial
Crista Perlton

Crista Perlton

Solutions Architect at Inedo

Recent Posts by Crista Perlton:

by Crista Perlton, on Sep 16, 2022 1:59:29 AM

Can you spot the difference between colorama and colourama? Sure, one is American English and the other is aimed toward British-English users. One of these is a malicious python package …

Read Story

by Crista Perlton, on May 3, 2022 2:54:00 AM

You’ve got a problem with your Python application. It won’t build even though it worked fine yesterday—so what gives? Well, have you checked your package dependencies lately? You know, when …

Read Story

by Crista Perlton, on May 1, 2022 3:06:00 AM

For your usual Python deployment, maybe you just clone your application using git, install the dependencies with pip, and pray it all works out: a tactic referred to as Pull-and-Pray …

Read Story

by Crista Perlton, on Apr 13, 2022 3:21:00 AM

Did you know that 46% of Python libraries in PyPI have vulnerability security problems? Of those, 11% can pose high-severity risks. Regularly scanning for vulnerabilities is the best way to …

Read Story

by Crista Perlton, on Apr 6, 2022 11:12:00 AM

Python was ranked the second most popular coding language in a 2021 GitLab survey, raising from fourth place in 2014. What is causing this upward trend? Any Python developer will …

Read Story
Topics:python

by Crista Perlton, on Mar 14, 2022 9:16:33 PM

Python is really powerful and relatively easy to learn - but that doesn't mean that everyone can just run your Python scripts. There's a bit of a learning gap, even …

Read Story
Topics:DevOpsOtterpython

by Crista Perlton, on Feb 21, 2022 10:40:00 AM

I’m probably not the only one guilty of a Pull and Pray. You know, when you clone your application using git, install the dependencies with pip, and pray it all …

Read Story
Topics:DevOpsBuildMasterpython

by Crista Perlton, on Feb 15, 2022 10:00:00 AM

PyPI admins try their best to identify and remove malicious Python packages, but many inevitably slip through. Python package aws-login0tool was recently discovered to be a malicious package attempting to …

Read Story
Topics:ProGetDevOpspython

by Crista Perlton, on Feb 11, 2022 8:26:00 AM

Did you hear about the malicious PyPI package that collects environment details and sends the info to an unknown webservice? Or the Trojan horse one that installs, fetches a exe …

Read Story
Topics:ProGetDevOpspython

by Crista Perlton, on Feb 3, 2022 9:38:00 AM

Did you know approximately 13.6% of packages on PyPI have a GPL-3 license? That means there are over 45,000 packages operating under a Copyleft practice – which when violated can …

Read Story
Topics:ProGetDevOpspython

About Inedo

Inedo is a software product company bringing you the "tech behind the tech."

Makers of Windows-first, enterprise DevOps tools BuildMaster CI/CD, ProGet private package management, and Otter IaC. Maximize developer time, minimize release risk, and empower stakeholders to bring their vision to life faster, all with the people and technology you have right now.

Follow us on social media

Follow Inedo on YouTube Follow Inedo on Facebook Follow Inedo Twitter New call-to-action

Free e-books

Free PowerShell Book NuGet for the Enterprise Guide Jenkins CICD Guide Free dotnet book Free CICD Book free IaC book