Python 3.13 Features, Octiverse Report & GitHub Action Security

Security in Development

GitHub Actions Auditing with Zizmor

• Discussed the tool Zizmor, a security auditing utility specifically designed for GitHub Action workflows.
• The tool assists developers in identifying potential vulnerabilities in their continuous integration configurations which are often overlooked.
• It is currently in beta and can be installed via Cargo or Homebrew.

Industry Insights

The 2024 Octiverse Report

"Python is now the most used language on GitHub as global open source activity continues to extend beyond traditional software development."

• GitHub’s latest report highlights that Python has overtaken JavaScript as the most popular language on the platform.
• There is a significant surge in global developers coming from STEM fields outside of traditional software engineering, contributing to the rapid growth of the Jupyter Notebook ecosystem.
• Despite concerns, GitHub data indicates that AI-assisted coding has not degraded the quality of open-source contributions.

Updates and Ecosystem

Python 3.13 Highlights

• Several quality-of-life improvements were discussed, including multi-line editing and code completion in PDB (the Python Debugger).
• Pathlib and shutil modules received performance optimizations and functional tweaks, such as better symlink management.
• A notable update allows for easier interruption (via Ctrl+C) of certain re module functions that could previously hang execution.

Developer Tools and Infrastructure

• Codium was highlighted as a powerful AI tool for enterprise-ready code completion and chat functionality across major IDEs.
• Observations on the transition of infrastructure to Hetzner for cost-effective hosting, noting that high-performance AMD EPYC servers are significantly more affordable than traditional cloud providers.
• Updates regarding the uv package manager: users can now easily install free-threaded Python (3.13t) using uv python install --preference only-managed.