On 08/28/2013 07:05 PM, Nick Coghlan wrote:
It's likely worth checking with Donald and Noah how the SSL enforcement on PyPI itself is set up. I believe the aim was just to ensure browsers are always using HTTPS, while switching other tools to SSL still requires client side updates.

Makes perfect sense to me!