On 12 Aug 2014 01:23, "Donald Stufft" <firstname.lastname@example.org> wrote:
>> On Aug 11, 2014, at 11:11 AM, Marcus Smith <email@example.com> wrote:
>> > Public index servers SHOULD NOT allow the use of local version identifiers for uploaded distributions.
>> I'm thinking this should just say "PyPI" and not "Public" broadly.
>> The point is for local versions not to confused with the one authoritative upstream version sequence, not that it couldn't be "public".
>> I can imagine locally versioned distributions needing to be distributed or available "publicly" (e.g. for a specific platform or system).
>> Considering the recommendation to use the "python.integrator" extension, which is generally about "downstream" modification and redistribution, it seems inconsistent to say that this redistribution couldn't be public.
> We actually have a definition for Public Index Server, It’s ""Public index
> servers" are index servers which allow distribution uploads from untrusted third
> parties. The Python Package Index  is a public index server.”. This is
> defined in PEP 426.
> But thinking about it, that doesn't particularly match it either, because
> something like binstar allows this, but should allow local versions.
In this particular case, I think Marcus is right - the restriction is specific to PyPI as the keeper of the authoritative shared namespace, rather than applying to public index servers in general.
> Donald Stufft
> PGP: 7C6B 7C5D 5E2B 6356 A926 F04F 6E3C BCE9 3372 DCFA
> Distutils-SIG maillist - Distutils-SIG@python.org