1. Home
  2. Discover
  3. Technology
  4. Python Weekly

Python Weekly - Python Weekly - Issue 659

View this email in your browser

Python Weekly
Welcome to issue 659 of Python Weekly. Let's get straight to the links this week.
News

Binary secret scanning helped us prevent (what might have been) the worst supply chain attack you can imagine
The JFrog Security Research team identified the leaked secret and immediately reported it to PyPI’s security team, who revoked the token within a mere 17 minutes! This post will explain how we found a GitHub PAT that provided access to the entire Python infrastructure and prevented a supply chain disaster. Using this case, we will discuss the importance of (also) shifting right in secrets detection – searching for secrets in binaries and production artifacts, not just on source code.


Articles, Tutorials and Talks

SE Radio 624: Marcelo Trylesinski on FastAPI 
Marcelo Trylesinski, a senior software engineer at Pydantic and a maintainer of open-source Python tools including Starlette and Uvicorn, joins host Gregory M. Kapfhammer to talk about FastAPI. Their conversation focuses on the design and implementation of FastAPI and how programmers can use it to create web-based APIs. They also explore how to create and deploy a FastAPI implemented in the Python programming language. Brought

Bloat beneath Python’s Scales: A Fine-Grained Inter-Project Dependency Analysis
Modern programming languages facilitate software reuse via package managers, but this leads to dependency bloat, which increases security risks, maintenance costs, storage requirements, and slows load times. A detailed analysis of 1,302 Python projects and 3,232 dependencies in the PyPI ecosystem found over 50% of dependencies are bloated, with 15% of security defects residing in these bloated areas, highlighting the need for improved debloating techniques and practices.

Free-threaded CPython is ready to experiment with!
An overview of the ongoing efforts to improve and roll out support for free-threaded CPython throughout the Python open source ecosystem.

Finding Simple Rewrite Rules for the JIT with Z3 
The article discusses using Z3, an SMT solver, to find and verify simple rewrite rules for PyPy's JIT compiler operations. It demonstrates how to encode JIT operations into Z3 formulas and use the solver to prove the correctness of simplifications, as well as synthesize constants for more complex rewrite patterns.

A Python Epoch Timestamp Timezone Trap
This is an article about a Python epoch timestamp timezone trap. It discusses how epoch timestamps can be tricky to work with in Python, especially when dealing with timezones. The author provides a few tips for avoiding the trap.

A debugging story
This is an article about debugging a Jupyter Echo Kernel ported to Deno using deno-python. The author encountered a segmentation fault and used gdb to identify the problem. The issue stemmed from the creation of the pyMethodDef buffer, and adding 4 bytes of padding resolved it. However, the kernel still exits unexpectedly.

Instrumenting Python GIL with eBPF
This is an article about using eBPF to analyze the Python GIL (Global Interpreter Lock), a potential performance bottleneck. It explains how to measure the GIL's impact and provides a guide on using eBPF for instrumentation.

PyTorch Lightning: A Comprehensive Hands-On Tutorial
This comprehensive, hands-on tutorial teaches you how to simplify deep learning model development with PyTorch Lightning. Perfect for beginners and experienced developers alike, it covers environment setup, model training, and practical examples.

Build a search index in Python
How can search engines be so fast? While there are many parts of a search system, one of the key concepts to know is the inverted index.

Transcribing Audio with Python on Your Local Machine
If you don't want to pay for a service to transcribe your audio, you can generate it easily on your own machine with a little setup. Here's how.

Resource management and generators in Python
The article explores resource management and cleanup behavior in Python generators, highlighting unexpected issues when generators are not fully consumed. It demonstrates various scenarios, including the use of context managers and the finally clause, to ensure proper cleanup and resource management in generator functions.


Interesting Projects, Tools and Libraries

exo
Run your own AI cluster at home with everyday devices.

Korvus
Korvus is a search SDK that unifies the entire RAG pipeline in a single database query. Built on top of Postgres with bindings for Python, JavaScript, Rust and C.

MobileLLM
MobileLLM Optimizing Sub-billion Parameter Language Models for On-Device Use Cases. In ICML 2024.

vectorlite
A fast and tunable vector search extension for SQLite.

kaskade
kaskade is a text user interface for kafka, which allows you to interact and consume topics from your terminal in style!

AI Dialer
A full stack app for interruptible, low-latency and near-human quality AI phone calls built from stitching LLMs, speech understanding tools, text-to-speech models, and Twilio’s phone API.


Upcoming Events and Webinars

PyLadies Amsterdam Meetup July 2024
Join us for an interactive workshop where we’ll dive into the world of LLM Guardrails. Discover the mechanisms that ensure applications produce reliable, robust, safe, and ethical outputs, and understand their crucial role in LLMs.

PyBerlin 48
There will be following talks
  • Low effort configurable python: type hints and dependency injection
  • From Cronjobs to Apache Airflow: Enhancing Our Data Infrastructure
  • Exploring Creative Fusion: Robotics, 3D Printing, and Python with OpenCV, TensorFlow, and Beyond

PuPPy Meetup July 2024
There will be following talks
  • Scraping for fun and (no) profit
  • Python can do ANYthing: unit-testing in sql
  • Code Reviews: The Art and the Science

PyCologne #1
There will be following talks
  • Evaluating RAG applications
  • Estimagic: a package for difficult numerical optimization problems
  • Intro to OSSci + AI Alliance

Portland Python User Group Meetup July 2024
There will be a talk, Let's Talk Databases in Python: SQLAlchemy and Alembic.

PyData Chicago Meetup July 2024
There will be a talk, Using Bayesian Regression to Link Biochemical and Cellular Efficacy of the Coronavirus Main Protease.
 
Our Other Newsletters
Programmer Weekly - A free weekly newsletter for programmers.

Founder Weekly - A free weekly newsletter for entrepreneurs featuring best curated content, must read articles, how to guides, tips and tricks, resources, events and more.
 
Copyright © 2024 Python Weekly, All rights reserved.
You are receiving our weekly newsletter because you signed up at http://www.PythonWeekly.com.

Our mailing address is:
Python Weekly
Brooklyn
Brooklyn, NY 11209

Add us to your address book


Want to change how you receive these emails?
You can update your preferences or unsubscribe from this list.

Older messages

Python Weekly - Issue 658

Thursday, July 11, 2024

View this email in your browser Python Weekly Welcome to issue 658 of Python Weekly. Let's get straight to the links this week. Articles, Tutorials and Talks PySkyWiFi: completely free,

Python Weekly - Issue 657

Thursday, July 4, 2024

View this email in your browser Python Weekly Welcome to issue 657 of Python Weekly. Let's get straight to the links this week. From Our Sponsor Get Your Weekly Dose of Programming A weekly

Python Weekly - Issue 656

Thursday, June 27, 2024

View this email in your browser Python Weekly Welcome to issue 656 of Python Weekly. Let's get straight to the links this week. Articles, Tutorials and Talks pgvector for Python developers Learn

Python Weekly - Issue 655

Thursday, June 20, 2024

View this email in your browser Python Weekly Welcome to issue 655 of Python Weekly. Let's get straight to the links this week. From Our Sponsor Get Your Weekly Dose of Programming A weekly

Python Weekly - Issue 654

Thursday, June 13, 2024

View this email in your browser Python Weekly Welcome to issue 654 of Python Weekly. Let's get straight to the links this week. Articles, Tutorials and Talks Let's reproduce GPT-2 (124M) In

You Might Also Like

Weekend Reading — More time to write

Sunday, November 24, 2024

More Time to Write A fully functional clock that ticks backwards, giving you more time to write. Tech Stuff Martijn Faassen (FWIW I don't know how to use any debugger other than console.log) People

🕹️ Retro Consoles Worth Collecting While You Still Can — Is Last Year's Flagship Phone Worth Your Money?

Saturday, November 23, 2024

Also: Best Outdoor Smart Plugs, and More! How-To Geek Logo November 23, 2024 Did You Know After the "flair" that servers wore—buttons and other adornments—was made the butt of a joke in the

JSK Daily for Nov 23, 2024

Saturday, November 23, 2024

JSK Daily for Nov 23, 2024 View this email in your browser A community curated daily e-mail of JavaScript news React E-Commerce App for Digital Products: Part 4 (Creating the Home Page) This component

Not Ready For The Camera 📸

Saturday, November 23, 2024

What (and who) video-based social media leaves out. Here's a version for your browser. Hunting for the end of the long tail • November 23, 2024 Not Ready For The Camera Why hasn't video

Daily Coding Problem: Problem #1617 [Easy]

Saturday, November 23, 2024

Daily Coding Problem Good morning! Here's your coding interview problem for today. This problem was asked by Microsoft. You are given an string representing the initial conditions of some dominoes.

Ranked | The Tallest and Shortest Countries, by Average Height 📏

Saturday, November 23, 2024

These two maps compare the world's tallest countries, and the world's shortest countries, by average height. View Online | Subscribe | Download Our App TIME IS RUNNING OUT There's just 3

⚙️ Your own Personal AI Agent, for Everything

Saturday, November 23, 2024

November 23, 2024 | Read Online Subscribe | Advertise Good Morning. Welcome to this special edition of The Deep View, brought to you in collaboration with Convergence. Imagine if you had a digital

Educational Byte: Are Privacy Coins Like Monero and Zcash Legal?

Saturday, November 23, 2024

Top Tech Content sent at Noon! How the world collects web data Read this email in your browser How are you, @newsletterest1? 🪐 What's happening in tech today, November 23, 2024? The HackerNoon

🐍 New Python tutorials on Real Python

Saturday, November 23, 2024

Hey there, There's always something going on over at Real Python as far as Python tutorials go. Here's what you may have missed this past week: Black Friday Giveaway @ Real Python This Black

Re: Hackers may have stolen everyone's SSN!

Saturday, November 23, 2024

I wanted to make sure you saw Incogni's Black Friday deal, which is exclusively available for iPhone Life readers. Use coupon code IPHONELIFE to save 58%. Here's why we recommend Incogni for