<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=705633339897683&amp;ev=PageView&amp;noscript=1">
urllib3 and tidelift

urllib3 is a pypi component included in the Tidelift Subscription

Tidelift is working with the maintainers of urllib3 and a growing network of open source maintainers to ensure your open source software supply chain meets enterprise standards now and into the future.



With a comprehensive open source management solution like the Tidelift Subscription, you can efficiently manage the ways development teams use thousands of open source components across JavaScript, Python, Java, PHP, Ruby, .NET, Rust, and more. Accelerate application development, cut costs, and reduce risk with catalogs of known-good, proactively maintained open source components—backed by maintainers. 

Tidelift DEMO FINALcut 1 min 2021

 

Catalog-hero_1 urllib3 is a part of the Tidelift Subscription

About urllib3

urllib3 is a powerful, sanity-friendly HTTP client for Python. Much of the Python ecosystem uses urllib3. urllib3 brings many critical features that are missing from the Python standard libraries:

  • Thread safety.
  • Connection pooling.
  • Client-side SSL/TLS verification.
  • File uploads with multipart encoding.
  • Helpers for retrying requests and dealing with HTTP redirects.
  • Support for gzip and deflate encoding.
  • Proxy support for HTTP and SOCKS.
  • 100% test coverage.

urllib3 is used by mainy popular Python packages, like Requests and Pip. Chances are, if you're writing code in Python, you might be using urllib3.

urllib3 and the maintainers of thousands of other packages are working with Tidelift to deliver one enterprise subscription that covers all of the open source you use. If you want the flexibility of open source and the confidence of commercial-grade software, this is for you.

Check out this blog post about how Tidelift worked with the maintainers of urllib3 to create a coordinated security vulnerability disclosure to help Tidelift subscribers avoid zero-day fire drills.

You can learn more on the urllib3 project repo.

 

 

"Tidelift has made the process of offering a comprehensive vulnerability disclosure process simple for the urllib3 team. This makes delivering secure code and responding quickly to vulnerabilities easy even for a small team."

- Seth Larson, urllib3 co-maintainer

Get a head start with the Tidelift catalog

Security-advised npm

JavaScript users get vulnerability remediation advice for 59,272 package releases

License-annotated Maven

Java users get SPDX-formatted licenses for 55,933 package releases

License-annotated PyPi

Python users get SPDX-formatted licenses for 11,191 package releases

License-annotated Conda

Conda users get SPDX-formatted licenses for 201 package releases

Security-advised PyPi

Python users get vulnerability remediation advice for 10,840 package releases

white stars - top large

What is included in the Tidelift Subscription?

Open source management tools

Generate SBOMs of all the packages used in your applications with rich insights such as:

software bill of materials
Screen Shot 2022-02-16 at 10.10.44 AM

Tidelift catalog

Security-advised and license-annotated catalog recommendations to keep your applications safe:

  • Contextually relevant vulnerability and license related recommendations
  • Notifications when specific security and license related actions need to be performed
  • Automated licensing analysis and policies

 

Custom catalogs

Create a custom repository of pre-vetted and approved packages unique to your organization:

  • Eliminate the burden on developers of researching and assessing issues themselves
  • Drive consistent development practices across the organizations
  • Track non-public, internally-developed (inner-source) packages included in your packages
track dependencies with custom catalogs