GitHub Artifact Attestations sign and verify software artifacts
Artifact Attestations in GitHub Actions is now generally available to secure artifacts and verify provenance using Sigstore, Kubernetes Policy Controller, and gh attestation verify.
An /intro to Python 3.14's New Features - Mouse Vs Python
Python 3.14 introduces optional free-threaded builds, an experimental JIT for macOS and Windows, and switches release signing to Sigstore instead of GPG.