Merge pull request #142 from manikanta-hitunik-com/patch-140

mikeckennedy · web-flow · commit 51b0d81e171f · 2024-04-25T18:44:05.000-07:00
Update 457-security-phylum.txt
diff --git a/transcripts/457-security-phylum.txt b/transcripts/457-security-phylum.txt
@@ -192,15 +192,15 @@
 
 00:09:31 one level deeper in the Python space, that used to be C, and now it's, I think it's pretty solidly
 
-00:09:37 moving to be Rust, right? There's a lot of popular things, gigantic, for example, I pulled up earlier, where that's the foundation,
+00:09:37 moving to be Rust, right? There's a lot of popular things, Pydantic, for example, I pulled up earlier, where that's the foundation,
 
 00:09:44 but that also seems to be where the momentum is.
 
 00:09:46 Yeah. The oxidation of Python libraries is a real thing. I mean, look at Ruff.
 
 00:09:52 Yeah. Ruff. I just heard about how Granium, I think it was, which is a new, similar to
 
-00:10:02 G-Unicorn and MicroWizky is a Rust-based async server. It goes on and on.
+00:10:02 G-Unicorn and MicroWSGI is a Rust-based async server. It goes on and on.
 
 00:10:10 This portion of Talk Python to Me is brought to you by OpenTelemetry support at Sentry.
 
@@ -524,7 +524,7 @@
 
 00:25:55 Yes.
 
-00:25:55 The folks at PyPA are pretty excellent. So it's to some degree a timing issue as well.
+00:25:55 The folks at PyPI are pretty excellent. So it's to some degree a timing issue as well.
 
 00:26:00 Yes. Vulnerabilities are different, right? That's what a lot of people focus on. A lot of the
 
@@ -670,15 +670,15 @@
 
 00:32:10 Yeah. So, basically, the PyP is awesome and it does a bunch of great stuff. And one of the
 
-00:32:14 things I really like about working with PyP is I don't need to teach people anything if they want
+00:32:14 things I really like about working with PyPI is I don't need to teach people anything if they want
 
 00:32:19 to work with my project. I don't need to teach them like, "Oh, I know you love poetry, but I'm
 
 00:32:24 using a combination of the Hatch build backend with PDM." You're like, "What? I don't even know
 
 00:32:29 what those are." There's a lot of ways in which you work that are brought in with a lot of these
 
-00:32:36 tools here. So, PyP is kind of like, it just kind of works, right?
+00:32:36 tools here. So, PyPI is kind of like, it just kind of works, right?
 
 00:32:39 Yes.
 
@@ -688,9 +688,9 @@
 
 00:32:51 because that doesn't affect its dependency possibly, right? It depends on what it said.
 
-00:32:55 So, I'm a huge fan of PyP tools. This is actually what I do most of the time.
+00:32:55 So, I'm a huge fan of PyPI tools. This is actually what I do most of the time.
 
-00:32:59 Yes. PyP tools is another one. It's great. I think it has this PyP compile
+00:32:59 Yes. PyP tools is another one. It's great. I think it has this PyPI compile
 
 00:33:07 command that will take as an input, I think, just about any Python manifest type that's out there.
 
@@ -702,13 +702,13 @@
 
 00:33:36 their loose requirements, the manifest files. Yeah. So, yeah.
 
-00:33:41 Yeah. I really like it. And you can say, "PyP compile upgrade," and it'll look at all the
+00:33:41 Yeah. I really like it. And you can say, "PyPI compile upgrade," and it'll look at all the
 
 00:33:47 dependencies and upgrade them all as high as they can go. But what's nice about that is,
 
 00:33:51 you'll be working for a while, then you choose, "Well, let me just do a refresh on the dependencies
 
-00:33:56 right now and repin them and see how that works," and then just carry on with your business for a
+00:33:56 right now and re-pin them and see how that works," and then just carry on with your business for a
 
 00:34:00 while, right? And it'll manage that transitive closure as well with actually a really nice
 
@@ -1441,4 +1441,3 @@
 01:08:14 [Music]
 
 01:08:19 [ better right now ]
-
