[Distutils] Re: Surviving a Compromise of PyPI - PEP 458 and 480

21 Dec 2019


      Earlier this year, Brett Cannon consulted with Donald and updated the 
status of PEP 458 to Deferred. https://github.com/python/peps/pull/931
The PEP status is now Draft again and the new proposed title is
"PEP 458: Secure transport independent download integrity for PyPI packages"
(see 
https://github.com/secure-systems-lab/peps/blob/c13384a4fac6822626abb7e09ab7... 
).
Current discussion is happening on Discourse:
https://discuss.python.org/t/pep-458-surviving-a-compromise-of-pypi/2648/
-- 
Sumana Harihareswara
Changeset Consulting
https://changeset.nyc

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

2001

2000

1999

1998

[Distutils] Re: Surviving a Compromise of PyPI - PEP 458 and 480