-
Getting started with Chainguard Libraries for Python
-
From PyPI to Chainguard: What we’re changing (and why)
-
Pulling dependencies from Chainguard Libraries
-
Going all-in with Chainguard Containers and Libraries
-
Inspecting SBOMs and verifying Python packages
-
Fixing vulnerabilities with CVE remediated libraries
-
Wrapping up: From PyPI to verified Python builds
Chainguard Libraries for Python
Learn how to migrate a Python app to Chainguard Libraries, verify your dependencies, and improve supply chain security without breaking your workflow.
This course walks through migrating a Python application from PyPI to Chainguard Libraries, comparing builds, verifying dependency provenance, and using both standard and CVE-remediated packages. You’ll learn how to integrate Chainguard into your existing workflow and confirm everything is securely sourced.
At the end of the course, you will be able to:
- Migrate a Python application from PyPI to Chainguard Libraries
- Configure authentication and repository access using chainctl and .netrc
- Build Python images using Chainguard Libraries with both upstream and Chainguard base images
- Verify dependency provenance and coverage using chainctl libraries verify
- Inspect SBOMs to understand dependency composition and origin
- Validate package integrity using Cosign and Sigstore bundles
- Use Chainguard’s CVE-remediated libraries to address vulnerabilities without upgrading versions