Skip to content

[python sdk] implement protections against python supply chain attacks with uv #3246

Open
#3257
Open
[python sdk] implement protections against python supply chain attacks with uv#3246
#3257
Labels
good first issueGood for newcomerspythonPull requests that update Python code
@slbotbm

Description

@slbotbm
slbotbm
opened on May 13, 2026

Description

Due to the increase in supply chain attacks in recent months, I'd like to add dependency cooldown to pyproject.toml

Component

None

Proposed solution

In pyproject.toml, add:

[tool.uv]
exclude-newer = "7 days"

Alternatives considered

None

Metadata

Metadata

Assignees

No one assigned

    Labels

    good first issueGood for newcomerspythonPull requests that update Python code

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions