[Distutils] Invalid Packages
Nick Coghlan
ncoghlan at gmail.com
Mon Feb 19 08:47:03 EST 2018
On 18 February 2018 at 18:06, Nick Coghlan <ncoghlan at gmail.com> wrote:
> On 18 February 2018 at 03:48, Lele Gaifax <lele at metapensiero.it> wrote:
>> Nathaniel Smith <njs at pobox.com> writes:
>>
>>> What do you mean by a "spam package"? I guess it might be covered
>>> under this section:
>>> https://www.python.org/dev/peps/pep-0541/#invalid-projects
>>>
>>> -n
>>
>> Today lots of packages like the following appeared on PyPI:
>>
>> https://pypi.python.org/pypi/Kim-Kardashian-Hollywood-Hack-Cheats-tars-Cash-Energy-Genearator-Online-2018/1.1.2
>>
>> Sooner or later we should find a solution, otherwise the index will become a
>> rubbish receptacle.
>
> The incident report (and response status updates) for the current spam
> attack can be found here:
> https://status.python.org/incidents/mgjw1g5yjy5j
While this is still the right link to monitor for updates on this
particular incident, folks interested in PyPI's spam handling in
general may want to subscribe to
https://github.com/pypa/warehouse/issues/2982
Cheers,
Nick.
--
Nick Coghlan | ncoghlan at gmail.com | Brisbane, Australia
More information about the Distutils-SIG
mailing list