<div><span style="color: rgb(160, 160, 168); ">On Tuesday, February 5, 2013 at 2:34 PM, Daniel Holth wrote:</span></div><blockquote type="cite" style="border-left-style:solid;border-width:1px;margin-left:0px;padding-left:10px;">
                    <span><div><div><div dir="ltr"><div><div><div>There is a well-engineered framework out there already: <a href="https://www.updateframework.com/wiki/SecuringPythonPackageManagement">https://www.updateframework.com/wiki/SecuringPythonPackageManagement</a><br>
</div></div><br></div></div></div></div></span></blockquote><div>To my knowledge this depends on PyPI remaining uncompromised.</div>