BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//pretalx//pretalx.com//scipy-2026//speaker//9HRXKH
BEGIN:VTIMEZONE
TZID:CST
BEGIN:STANDARD
DTSTART:20001029T030000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=10;UNTIL=20061029T080000Z
TZNAME:CST
TZOFFSETFROM:-0500
TZOFFSETTO:-0600
END:STANDARD
BEGIN:STANDARD
DTSTART:20071104T030000
RRULE:FREQ=YEARLY;BYDAY=1SU;BYMONTH=11
TZNAME:CST
TZOFFSETFROM:-0500
TZOFFSETTO:-0600
END:STANDARD
BEGIN:DAYLIGHT
DTSTART:20000402T030000
RRULE:FREQ=YEARLY;BYDAY=1SU;BYMONTH=4;UNTIL=20060402T090000Z
TZNAME:CDT
TZOFFSETFROM:-0600
TZOFFSETTO:-0500
END:DAYLIGHT
BEGIN:DAYLIGHT
DTSTART:20070311T030000
RRULE:FREQ=YEARLY;BYDAY=2SU;BYMONTH=3
TZNAME:CDT
TZOFFSETFROM:-0600
TZOFFSETTO:-0500
END:DAYLIGHT
END:VTIMEZONE
BEGIN:VEVENT
UID:pretalx-scipy-2026-RKS93M@pretalx.com
DTSTART;TZID=CST:20260716T174500
DTEND;TZID=CST:20260716T184000
DESCRIPTION:Supply chain attacks on Python\, including recent compromises o
 f popular packages and CI workflows\, have exposed structural weaknesses i
 n the scientific Python ecosystem. This BoF will bring together library ma
 intainers\, downstream users\, and security practitioners to discuss pract
 ical strategies for securing scientific Python stacks\, from core packages
  (NumPy/SciPy) to domain libraries and analysis workflows. We will share c
 urrent efforts (e.g.\, SPEC 8\, Trusted Publishing\, SBOM generation\, Git
 Hub Actions hardening)\, identify pain points and gaps\, and brainstorm ac
 tionable steps the community can take over the next year to make scientifi
 c Python releases more trustworthy by default. Join us to share your exper
 iences\, challenges\, and ideas on fortifying our open-source projects aga
 inst potential threats and ensuring the integrity of scientific research.
DTSTAMP:20260715T021141Z
LOCATION:Memorial Hall
SUMMARY:Securing the Scientific Python Supply Chain - Juanita Gomez\, Jarro
 d Millman\, Matthew Feickert
URL:https://pretalx.com/scipy-2026/talk/RKS93M/
END:VEVENT
END:VCALENDAR
