Need help with Python 2.7 Extended Lifecycle Support? 
Maintain or Migrate? The Python 2 Migration Conundrum in 2022
Should you maintain your Python 2 codebase or migrate to Python 3? You might not have a choice. Here’s why.
Read MoreActiveState Blog
- All Categories
- AI
- AppSec Tools
- artifact repository
- CI/CD
- data analysis
- dependency management
- Dependency resolution
- Dependency Vendoring
- DevOps
- DevSecOps
- indemnification
- Machine Learning
- Open Source Languages
- Perl
- Polyglot
- Python Programming
- Ruby Programming
- SBOMs
- SCA Tools
- Security & Compliance
- SLSA
- Software Attestations
- Supply Chain Security
- Tcl
- web developers
Introducing Trusted Open Source Artifact Subscription for JFrog Artifactory
Automatically populate JFrog Artifactory with up-to-date open source Python packages, or other open source language artifacts you can trust.
Read More
The Python 2 Threat in Your Supply Chain Is Real
Python 2 in development and test environments pose an undue risk in the face of escalating supply chain attacks.
Read More
PyPI security pitfalls and steps towards a secure Python ecosystem
PyPI is improving Python supply chain security, but gaps still exist. Learn the tools and techniques to avoid Python’s security pitfalls.
Read More
Managing IoT Security Threats and Vulnerabilities Better
Securing IoT devices means securing their network, supply chain, and automating vulnerability remediation. Here’s how.
Read More
How to work with vulnerable Python packages, and stay secure
Vulnerabilities are a fact of Python developer life. Read this post to learn how to automate vulnerability remediation quickly and easily.
Read More
How to make your CircleCI runs faster, and more secure
Learn how to make your CircleCI runs faster and more secure by using a prebuilt runtime environment.
Read More
Which Python Dependency Manager Should I Choose?
Dependency management is hard. Environment management is harder. Learn how to do both, easier.
Read MoreHow to Avoid Becoming the Next SolarWinds
Software supply chain attacks have been happening for years, but have only recently achieved mainstream notoriety with the SolarWinds attack…
Read More
European union’s supply chain security guidelines for software suppliers
The European Union Agency for CyberSecurity (ENISA) is an agency of the European Union (EU) that helps the EU address…
Read More
Anaconda vs ActiveState: The better partner for a more secure Python supply chain
Python comes in many flavors, offering Pythonistas more than one way to accomplish their tasks. But for developers, the key…
Read More