Software security is a critical aspect of developing and maintaining reliable and safe systems. In the case of large and popular open source ecosystems, such as Python, ensuring security across a wide and diverse set of users and use cases can be a daunting task.

In this talk, we will discuss the challenges of applying security improvements to a widely used open source ecosystem like Python, and explore strategies for addressing these challenges at scale. We will discuss the importance of community involvement and collaboration, and the role of automation and tools in facilitating the adoption of security best practices.

By the end of this talk, attendees will have a better understanding of the challenges with and opportunities for improving software security in the Python ecosystem, and will have some practical takeaways for adopting and facilitating these changes in their own work.