Read the abstract ➤ https://www.conf42.com/DevSecOps_2023_Leonid_Akinin_trusty_package_ttps_oss_python Other sessions at this event ➤ https://www.conf42.com/devsecops2023 Join Discord ➤ https://discord.gg/DnyHgrC7jC Chapters 0:00 intro 1:43 preamble 2:04 disclaimer 2:28 contents 3:01 why this topic is important? 5:09 history of supply-chain attacks 8:15 ttps in supply-chain attacks 15:46 starjacking demo 33:08 installation & delivery 35:55 - demo 46:14 exfiltration and c2 47:26 - demo 1:01:16 defences 1:11:42 credits and references 1:12:48 thank you!