Attractive Nuisance<p>So <a href="https://tech.lgbt/tags/Python" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Python</span></a> people what's your favourite way to check for vulnerabilities in your <a href="https://tech.lgbt/tags/PyPi" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PyPi</span></a> supply chain?</p><p>My app lives inside a <code>pipenv</code> and everything's installed in that, from <a href="https://tech.lgbt/tags/Django" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Django</span></a> to <a href="https://tech.lgbt/tags/gunicorn" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>gunicorn</span></a>.</p>