PyPI's Trusted Publishers: The Package Publishing Game

In this game, players take on the role of a PyPI package maintainer who has just adopted the new trusted publishing method. Players must manage their package security, maintain good relationships with their OpenID Connect Identity Provider, and navigate through the process of publishing, while keeping an eye on their competitors who are vying for their market share. The game presents the high stakes of modern package publishing and the importance of maintaining security measures in the face of continuous cyberattacks.