banner
LightNews
miketheman.com
Mike Fiedler
@miketheman.com
3.1K followers 230 following 480 posts
Code Gardener. Wrangler of the Unusual. Roller Derby referee. AWS Hero. PyPI Maintainer. Shakshuka lover. he/him https://miketheman.dev
miketheman.dev
Posts Media Videos Starter Packs
miketheman.com
Mike Fiedler @miketheman.com · 1d
Does your org run a self-managed version of @gitlab.com and publish your own #Python packages to @pypi.org ?

If you want to try out an alpha of Trusted Publishing for GitLab Self-Managed instances, let me know via DM - I'm collecting interest now, and should have something to show soon.
5 5
miketheman.com
Mike Fiedler @miketheman.com · 2d
Will it matter? I don't know. Especially if the software is "for me" and I can use the thing that made it to fix it when it doesn't do *exactly* what I want...
1
miketheman.com
Mike Fiedler @miketheman.com · 2d
Maybe the friction involved in starting a fresh project helped forestall creating net new things all the time and inspired us to look for existing solutions, and potentially extend/contribute to them.

With the ability to quickly imagine your idea into reality, are we in a new era of software slop?
1 3
miketheman.com
Mike Fiedler @miketheman.com · 7d
But, but, free! I demand more for my $0!!
1
miketheman.com
Mike Fiedler @miketheman.com · 7d
Clear, and to the point. Great way to think about your career, from @danielleheberling.xyz

danielleheberling.xyz/blog/time-to...
Should I Stay or Should I Go? | Danielle's Blog
A framework for deciding when it's time to leave your current company, based on evaluating what you're building, who you're working with, and the technology you use.
danielleheberling.xyz
2 5
Reposted by Mike Fiedler
hugovk.dev
Hugo van Kemenade @hugovk.dev · 8d
Just released! 🚀

Please install and enjoy Python 3.14! 🥧

discuss.python.org/t/python-3-1...

#Python #Python314 #release
Two snakes enjoying a pie with 3.14 on the top and π crimping.
1 25 48
miketheman.com
Mike Fiedler @miketheman.com · 8d
I just backed Container on @kickstarter.com www.kickstarter.com/projects/boa...
Container, GRUNTZ, and Triangulation
Out of print for far too long—the legendary Container returns! + Discover GRUNTZ's sharp duels and Triangulation's witty word-guessing.
www.kickstarter.com
1
miketheman.com
Mike Fiedler @miketheman.com · 8d
What is this hindsight you speak of? We were all taught Hakuna Matata, never look back!
1
miketheman.com
Mike Fiedler @miketheman.com · 10d
The final two games for @gothamderby.bsky.social home season happened last night in Brooklyn. They were both really good games, and the championship game was a close, hard-fought nail-biter with some truly awesome displays of athleticism.

Support your local #rollerderby league!
5
miketheman.com
Mike Fiedler @miketheman.com · 11d
Root for NY Liberty 🗽 until they do!
1 2
miketheman.com
Mike Fiedler @miketheman.com · 16d
Sadly not this year, hopefully next!
1
miketheman.com
Mike Fiedler @miketheman.com · 17d
Not gonna lie, kinda wanna know what it tastes like
1
miketheman.com
Mike Fiedler @miketheman.com · 19d
Add 🦎 and 🖖 for added complexity!
4
miketheman.com
Mike Fiedler @miketheman.com · 19d
Attackers continue to find creative ways to expose credentials, often the first step in a larger scale supply chain attack.
pypi.org
Python Package Index @pypi.org · 19d
A campaign targeted GitHub Actions to steal PyPI tokens—PyPI wasn’t compromised and no PyPI packages were published by the attackers. Stay safe: review your tokens, rotate any exposed ones, and use short-lived, scoped GitHub Actions tokens. Details:
Token Exfiltration Campaign via GitHub Actions Workflows - The Python Package Index Blog
Incident report of a recent attack campaign targeting GitHub Actions workflows to exfiltrate PyPI tokens, our response, and steps to protect your projects.
blog.pypi.org
1 1 5
Reposted by Mike Fiedler
python.org
Python Software Foundation @python.org · 22d
The PSF joined the @openssf.org & others in signing “Open Infrastructure is Not Free.” Funding gaps in the open source industry mean critical infrastructure lacks support. Corporations benefiting from it must invest to sustain it.

Read more ➡️
11 13
miketheman.com
Mike Fiedler @miketheman.com · 22d
You may also wish to advertise the status on PyPI: blog.pypi.org/posts/2025-0...
PyPI Now Supports Project Archival - The Python Package Index Blog
Projects on PyPI can now be marked as archived.
blog.pypi.org
miketheman.com
Mike Fiedler @miketheman.com · 22d
Cool to see @abc7ny.bsky.social do a short piece on password security, promoting second factor authentication. Progress!!
2
miketheman.com
Mike Fiedler @miketheman.com · 23d
Thanks, you as well! I've got hazelnut fudge ice cream in the freezer 😋
1
miketheman.com
Mike Fiedler @miketheman.com · 23d
I was kind of hoping you had discovered a new elaborate phishing scheme and this was your way of triggering it 😆
1
miketheman.com
Mike Fiedler @miketheman.com · 23d
Aaaand done
1 2
miketheman.com
Mike Fiedler @miketheman.com · 23d
notsureif.gif
1
miketheman.com
Mike Fiedler @miketheman.com · 23d
Waiting for mine now
1 1
miketheman.com
Mike Fiedler @miketheman.com · 26d
"recent" as in December 2024?
miketheman.com
Mike Fiedler @miketheman.com · 26d
Oh, Claude.

> Thanks for pushing back - you saved me from recommending a square peg for a round hole.
1
Reposted by Mike Fiedler
lorencrary.bsky.social
Loren @lorencrary.bsky.social · 28d
when @miketheman.com tells me how much data has been downloaded from PyPI this year
A screenshot from Love Actually when Natalie's mom is detailing to Hugh Grant the amount of work she did on her child's octopus costume for the school nativity play. It is originally captioned "8 IS A LOT OF LEGS, DAVID" I have sloppily pasted over the 8 with a text box "1 EXABYTE" and "LEGS" with "DATA"
1 5