Apologies if these are a bit unorganized thoughts. We see more and more supply chain attacks. I'd love to have some thoughts around this: - reproducible build by default - how could pip prevent installation of potentially squatting/similar spelling packages ? Maybe a download threshold could be configured system wide and a "are you sure" prompt. Package installation by non-programmer (who don't use the CLI) is becoming more and more common/difficult. Could we have a pip API to allow simpler creation of packaging GUI ? -- M On Tue, 19 Apr 2022 at 20:59, Jannis Leidel <jannis.leidel@pyfound.org> wrote:
On 19. Apr 2022, at 20:45, Brett Cannon <brett@python.org> wrote:
Does this include talking to the conda side of things? If not then does one of the objectives cover potentially trying to bridge the gap between PyPA and conda packaging?
With my conda maintainer hat on: I’d be happy to help answer these questions.
Off the top of my head my general goals are:
- identifying opportunities for collaboration between the conda project and PyPA - enabling conda to be a great environment to use PyPA tools with (e.g. pip, poetry etc) - follow Python packaging/PyPA specs as closely as possible to help Python users optionally profit from conda’s full-stack approach
I’m not sure in how much detail you want to have those items in the document, but count me in for the workshops.
Thanks, Jannis/jezdez
On Tue, Apr 19, 2022 at 5:14 AM <shamika.mohanan@pyfound.org> wrote:
Hello,
My name is Shamika and I am the Packaging Project Manager at the PSF. This is my first post here.
As part of this role, I am planning to initiate an exercise to define the Python Packaging Vision and Strategy. I have created this document to identify objectives, stakeholders and expected timeline for this initiative- https://docs.google.com/document/d/1T4IYZT7iFTlJm3N8wh8RC58noOFG2JbBI-8DYxYz...
As PyPA maintainers are one of the key stakeholders, I wanted to reach out and see what the maintainers would like to get out of this exercise. I also wanted to ensure I have identified all possible objectives. Please can you review the document and let me know if you have suggestions around the objectives, possible themes and anything else that you would find useful or would improve the results.
Please forward this email to anyone who should be included in this discussion.
Shamika _______________________________________________ PyPA-Committers mailing list -- pypa-committers@python.org To unsubscribe send an email to pypa-committers-leave@python.org https://mail.python.org/mailman3/lists/pypa-committers.python.org/ Member address: brett@python.org
_______________________________________________ PyPA-Committers mailing list -- pypa-committers@python.org To unsubscribe send an email to pypa-committers-leave@python.org https://mail.python.org/mailman3/lists/pypa-committers.python.org/ Member address: jannis.leidel@pyfound.org
_______________________________________________ PyPA-Committers mailing list -- pypa-committers@python.org To unsubscribe send an email to pypa-committers-leave@python.org https://mail.python.org/mailman3/lists/pypa-committers.python.org/ Member address: bussonniermatthias@gmail.com