PyPI will no longer accept compromised passwords!
I just wanted to give everyone a heads up that PyPI will no longer accept passwords that have been published in data breaches. For background you can take a look at https://github.com/pypa/warehouse/pull/4541 <https://github.com/pypa/warehouse/pull/4541>. For high level overview see https://pypi.org/help/#compromised-password <https://pypi.org/help/#compromised-password>. Finally if you have any trouble, please file an issue at https://github.com/pypa/warehouse/issues/new/choose <https://github.com/pypa/warehouse/issues/new/choose>.
More context: Donald wrote a blog post soon after this announcement https://caremad.io/posts/2018/08/pypi-compromised-passwords/ with some statistics.
More context: Donald wrote a blog post soon after this announcement https://caremad.io/posts/2018/08/pypi-compromised-passwords/ with some statistics. -- Sumana Harihareswara Changeset Consulting https://changeset.nyc
participants (2)
-
Donald Stufft -
Sumana Harihareswara