[Catalog-sig] [Proposal] Registered packages must provide the source code distribution on PyPI
lists at zopyx.com
Thu Jun 17 18:53:41 CEST 2010
-----BEGIN PGP SIGNED MESSAGE-----
Ronald Oussoren wrote:
> On 17 Jun, 2010, at 13:20, Patrick Gerken wrote:
>> Please have a look at the package in question. The only problem
>> with it is that the download URL registered on PyPI no longer works.
>> It redirects to the download page where you can find the source
>> And thats exactly what Andreas' argument is targeting.
> Note that even a requirement to upload a package to PyPI won't reliably
> solve Andreas' problem, the package owner could remove a release or even
> the entire package.
Released is released. There are only very few cases where one should be
allowed to remove packages (e.g. containing viruses, malware etc.).
Otherwise released stuff must not be touched.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
-----END PGP SIGNATURE-----
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 316 bytes
Desc: not available
More information about the Catalog-SIG