Supply chain security caught a CVE

• port-killer
• How we made Python's packaging library 3x faster
• CodSpeed
• Extras
• Joke

About the show

Sponsored by us! Support our work through:

• Our courses at Talk Python Training
• The Complete pytest Course
• Patreon Supporters

Connect with the hosts

• Michael: @mkennedy@fosstodon.org / @mkennedy.codes (bsky)
• Brian: @brianokken@fosstodon.org / @brianokken.bsky.social
• Show: @pythonbytes@fosstodon.org / @pythonbytes.fm (bsky)

Join us on YouTube at pythonbytes.fm/live to be part of the audience. Usually Monday at 11am PT. Older video versions available there too.

Finally, if you want an artisanal, hand-crafted digest of every week of the show notes in email form? Add your name and email to our friends of the show list, we'll never share it.

Michael #1: port-killer

• A powerful cross-platform port management tool for developers.
• Monitor ports, manage Kubernetes port forwards, integrate Cloudflare Tunnels, and kill processes with one click.
• Features:
  • 🔍 Auto-discovers all listening TCP ports
  • ⚡ One-click process termination (graceful + force kill)
  • 🔄 Auto-refresh with configurable interval
  • 🔎 Search and filter by port number or process name
  • ⭐ Favorites for quick access to important ports
  • 👁️ Watched ports with notifications
  • 📂 Smart categorization (Web Server, Database, Development, System)

Brian #2: How we made Python's packaging library 3x faster

• Henry Schreiner
• Some very cool graphs demonstrating some benchmark data.
• And then details about how various speedups
  • each being 2-37% faster
  • the total adding up to about 3x speedup, or shaving 2/3 of the time.
• These also include nice write-ups about why the speedups were chosen.
• If you are trying to speed up part of your system, this would be good article to check out.

Michael #3: AI’s Impact on dev companies

• On TailwindCSS: via Simon
  • Tailwind is growing faster than ever and is bigger than it has ever been
  • Its revenue is down close to 80%.
  • 75% of the people on our engineering team lost their jobs here yesterday because of the brutal impact AI has had on our business.
  • “We had 6 months left”
  • Listen to the founder: “A Morning Walk”
  • Super insightful video: Tailwind is in DEEP trouble
• On Stack Overflow: See video.
  • SO was founded around 2009, first month had 3,749 questions
  • December, SO had 3,862 questions asked
  • Most of its live it had 200,000 questions per month
  • That is a 53x drop!

Brian #4: CodSpeed

• “CodSpeed integrates into dev and CI workflows to measure performance, detect regressions, and enable actionable optimizations.”
• Noticed it while looking through the GitHub workflows for FastAPI
• Free for small teams and open-source projects
• Easy to integrate with Python by marking tests with @pytest.mark.benchmark
• They’ve releases a GitHub action to incorporate benchmarking in CI workflows

Extras

Brian:

• Part 2 of Lean TDD released this morning, “Lean TDD Practices”, which has 9 mini chapters.

Michael:

• Our Docker build just broke because of the supply chain techniques from last week (that’s a good thing!). Not a real issue, but really did catch an open CVE.
• Long passwords are bad now? ;)

Joke: Check out my app!