[Catalog-sig] disallowing the removal of packages?

"Martin v. Löwis" martin at v.loewis.de
Tue Jul 5 09:55:15 CEST 2011


> A communication channel for package maintainers to tell package users
> "hey, this has a really serious security bug!" or "this is deprecated"
> would be useful. The package homepage on PyPI can be used for that, of
> course, though perhaps isn't perfect as people who are using your
> package indirectly might not ever see it.

This may be a case where actually replacing an old release might be
useful: you could put an actual DeprecationWarning into the code, or
at least print a message in setup.py. This would increase the chance
that anybody who has hard-coded the library version might see it.

Regards,
Martin


More information about the Catalog-SIG mailing list