Overview
- PSF says Anthropic’s commitment will advance its security roadmap for CPython and PyPI to better protect millions of users from supply‑chain threats.
- Planned projects include automated proactive review of all PyPI uploads plus creation of a dataset of known malware to enable capability‑based detection tools.
- The foundation expects the resulting tooling to be transferable to other open‑source package repositories to raise security across ecosystems.
- The two‑year investment will also support core PSF programs and infrastructure, including the Security Developer‑in‑Residence and operation of PyPI.
- Anthropic did not detail its motives for the donation; separately it announced an expanded Labs with CPO Mike Krieger joining, Ami Vora leading Product, and leadership alignment to speed Claude product development.