3.1   Deb Nicholson

• Attended GitHub Universe to connect with community members, promote the PyCon US CFP and sponsorship opportunities
• Worked on various PSF communications
• Supported plans for the year-end fundraiser
• Worked on the two new PyCon US tracks
• Worked on budgeting
• Met with board members and community members

3.2   Oliva Sauls

• Launched PyCon US 2026 website and CFP
• CFP promotion and outreach
• Creating PyCon US 2026 promotional materials
• PyCon US 2026 hotel block management and contract renegotiation
• PyCon US sponsorship launch support
• PyCon US 2026 vendor management, contracts and invoices
• PyCon US brass meetings
• Managing Community Events Coordinator
• Preparing for PyCon US 2026 registration launch which includes: travel grant applications, opening housing/hotel block, Startup Row applications and Community booths applications
• Working with Startup Row organizers to create and review application and materials
• Working with vendors on room allocation and draft floorpans for LBCEC
• PyCon US 2026 Proposal Mentorship Program promotion and pairings/management

3.3   Laura Graves

November report not provided.

3.4   Ee Durbin

November report not provided.

3.5   Phyllis Dobbs

November report not provided.

3.6   Loren Crary

• Correspondence with current and prospective sponsors
• Contract negotiation with current and prospective sponsors
• Assessing grant opportunities
• Drafting and revising strategic public communications
• Board relations
• 2025 end of year fundraiser planning support
• Strategic team management and support
• External communications
• 2026 PSF & PyCon US sponsorship program launch
• Managing Programs Director & Community Communications Manager

3.7   Marie Nordin

• End-of-year fundraiser coordination & launch
• NSF news response
• PyCon US & PSF sponsor prospectus design
• PyCon US 2026 communication support
• Working on next Python Developer Survey
• Editing, publishing, promoting of staff communications
• Coordinated PSF Board office hours for 2025-2026
• Community Partner Program planning
• Grants WG membership confirmation
• Fellows WG
  • Admin of Q3 vote
  • Onboarding a new member
  • Membership confirmation

3.8   Seth Larson

• Alpha-Omega Statement of Work for 2026.
• Cyber Resilience Act meetings, focusing on how the PSF can create attestations re: Article 25 as a 501c3 non-profit.
• PEP 811: Python Security Response Team
• Work on end-of-year project for Sovereign Tech Agency regarding ZIP and tar archive fuzzing.
• PyCon US “Trailblazing Python Security” track, working with co-chairs to find sponsors and speakers.
• Published ZIP/tar whitepaper with Alpha-Omega
• Planned podcast appearance for Open Source Security Podcast

3.9   Mike Fiedler

• GitLab Trusted Publishing - Self-Managed Instance Support
  • Mike made significant progress on enabling Trusted Publishing for self-managed GitLab instances, a highly requested feature particularly from enterprise users. This work involved substantial architectural changes to support dynamic issuer URLs rather than the previously hardcoded https://gitlab.com.
  • Key implementation work included:
    • Added issuer_url column to GitLabPublisher model for storing custom issuer URLs
    • Implemented issuer lookup functionality to validate and retrieve GitLab instances
    • Fixed case-sensitivity issues in GitLab publishers
    • Refactored OIDC views to improve maintainability
    • Added user interface for selecting GitLab issuers
    • Updated JWKS storage to use issuer as cache key
    • Added metrics tags to include issuer_url
  • Mike tested the implementation end-to-end with salsa.debian.org (though it is too old at version 18.0.6), and began coordinated with beta testers from the community. He also created tooling to verify GitLab instance compatibility and JWT claims.
• Malware Response
  • Mike processed over 100 reports in October. The automated quarantine system continued to operate with zero false positives.
• Security Incident Response
  • Mike responded to a critical phishing campaign targeting PyPI users on September 23rd (extending into early October). The attack used the domain pypi-mirror.org as a reverse proxy to capture credentials. Mike:
    • Coordinated immediate response and user notifications
    • Identified and froze compromised accounts
    • Reset passwords for affected users
    • Reported the domain to Google Safe Browsing and Cloudflare Abuse
    • Collaborated with Seth Larson on the public blog post
• Zip Archive Security Improvements
  • Mike collaborated with Seth Larson and William Woodruff to address ZIP differential attacks. The team implemented restrictions on ZIP archive processing to prevent exploitation of implementation differences between ZIP parsers. This included adding testing tools and documentation about the vulnerability.
• Planning Documentation
  • Developed project proposals for 2-month focused initiatives in response to funding changes
  • Documented testing procedures for GitLab JWT token validation
  • Proposed implementing Trusted Account Links as a future security enhancement
• Community Engagement
  • Mike participated in multiple community activities:
    • Participated in Alpha-Omega Public Meeting on October 1st, discussing Trusted Publishing expansion and engaging with the Erlang ecosystem representative about self-hosted instance validation
    • Attended OpenSSF Securing Software Repositories Working Group monthly meeting on October 15th, sharing PyPI's self-audit progress and discussing malware reporting improvements
    • Engaged with potential beta testers for GitLab Self-Managed Trusted Publishing
    • Attended GitHub Universe + Community Day
• Quality & Maintenance
  • Routine dependency updates
  • Manual dependency updates
  • Code reviews for TOTP email login confirmation
  • Reviewed PEP 625 and 427 support
  • Collaborated on fixing issues with cmarkgfm library that broke during release
  • Fixed missing routes for template views
  • Investigated performance issues with OIDC endpoints
  • Addressed OpenSearch indexing problems by creating diagnostic tools
  • Contributed to discussions about organizational pricing and features
  • Reviewed proposals for audit funding with Trail of Bits and Alpha-Omega
  • Fixed org rename permissions for Support team
  • Added Trusted Publisher details surfacing in Admin interface
  • Pairing with Jacob on Celery logging improvements
  • Discussing structlog improvements and providing examples
  • Reviewing Trusted Publishing PEP discussions

3.10   Jaime Barrera

November report not provided.

3.11   Jacob Coffee

November report not provided.

3.12   Maria Ashna

November report not provided.

3.13   Abigail Mesrenyame Dogbe

• Meeting with the PyCon SeneGambia team
• Participated in the Python Education and Outreach Workgroup meeting
• Board interactions on slack and discord

3.14   Sheena O'Connell

• PyCon Africa: wrapping up and retros. A few tasks remaining
• PyCon Namibia: Assisted with social media scheduler and ticket platform, will assist with regional fundraising
• PSF: Basic finance course done (very introductory for now)
• PSF: Board Office Hours
• PSF: Finance committee meeting
• EdTech conference in South Africa. Not strictly Python-related, but I gained a lot of insights into tech adoption in under-resourced areas. Relevant for EOW (education and outreach workgroup)
• Guild of Educators: started setting up mechanisms for meetups starting next year (sessionize)
• Education and Outreach Workgroup: meeting

3.15   Denny Perez

• PSF: PyConUS Charlas outreach kit
• PSF: Board meetings and Slack discussions
• PSF: Advocacy Focus initiative, interview People from PSF
• PSF: PyLadiesCon: Organizer Team, Managing sponsors and communications.
• Community - PyCascades: Organizers meeting, social media outreach coordination
• Community - Python Chile: PyCon Chile coordination
• Community - Python Montreal, organizer, Meeting
• Community - PyLadies Montreal recruiting new members

3.16   Cristián Maureira-Fredes

• PSF: Office hours, board meetings, EC meetings and other catch-ups
• PSF: Fundraiser tasks related to the website and meetings
• Community: PyLadiesCon: Infra meetings and tasks, and weekly general meetings
• Community: Python en Español: Moderation, Q&A, and other maintenance tasks
• Community: PyLadies Berlin: Participated in a weekly meeting.

3.17   Simon Willison

November report not provided.

3.18   Jannis Leidel

• Board comms (Slack/Social/Discord)
• Regular Jazzband maintenance
• Fundraiser prep
• Closed EC meeting
• Onboarding into new role
• Some User Success WG coordination (get more people added and relaunch with a specific project)
• Finance Committee Meeting/Retro

3.19   Georgi Ker

• PSF: PSF Board Meeting
• PSF: PSF Office Hours
• PSF: PSF Fundraising Meetings
• PSF: PSF Fundraising designs for social media and theme
• PSF: Led D&I Workgroup
• PSF: Led Finance Committee retrospective meeting
• Community: Attended and Keynoted in PyCon HK
• Community: Attended and Keynoted in PyCon TH
• Community: Attended PyCon MY
• Community: Attended PyLadies KL
• Community: PyLadiesCon Organizing team

3.20   KwonHan Bae

• PSF: Board Office Hours
• PSF - participated in board discussions via Slack and email
• PSF - attended board meeting
• COMMUNITY : Python Docs Translate related some tasks
• COMMUNITY : vLLM KR Organize
• COMMUNITY : Python Asia Organize
• COMMUNITY : PyCon KR Organize
• COMMUNITY : Preparing PyAI Meetup Korea
• COMMUNITY : Humble Data Workshop Seoul
• COMMUNITY : PyLadies Seoul meetup

3.21   Tania Allard

November report not provided.

3.22   Cheuk Ting Ho

• Keynote at PyCon MY
• Spoke at 1st PyLadies Meetup at KL
• Humble data and PyLadies at Seoul
• Help hype up the fundraising campaign (please volunteer to sing)

3.23   Chris Neugebauer

November report not provided.

4.1   Code of Conduct

• Nothing to report at this time.

4.2   Grants

• Nothing to report at this time.

4.3   Sponsors

• Nothing to report at this time.

4.4   Marketing

• Nothing to report at this time.

4.5   Jobs

• Of the 522 Job submissions created in November 2025:
  • 130 have status approved
  • 3 have status archived
  • 25 have status draft
  • 180 have status expired
  • 92 have status rejected
  • 80 have status removed
  • 12 have status review

4.6   Trademarks

• Nothing to report

4.7   Fellows

• Nothing to report

4.8   Packaging

• Nothing to report

4.9   Infrastructure

• Nothing to report

4.10   Scientific Python

• Nothing to report

4.11   Diversity & Inclusion Work Group

• Nothing to report

6.1   Grants

• None at this time.

6.2   Sponsors

• None at this time.

6.3   Scientific Python

• None at this time.