Trusted Publishing: The Game

In this game, the player takes on the role of a PyPI package maintainer who is responsible for ensuring the security and integrity of packages before they are published. The player must navigate through different areas of the publishing process, such as identity verification and authorization token generation, and make decisions that will impact the security of the packages. The game also provides educational information about OpenID Connect and best practices for secure publishing.