[New-bugs-announce] [issue43338] [feature request] Please provide offical installers for security releases

Zhang Boyang report at bugs.python.org
Sat Feb 27 05:07:25 EST 2021

New submission from Zhang Boyang <zhangboyang.id at gmail.com>:


Thanks for developing Python! I noticed there is no offical installers for security releases of old python version. This looks a little strange to me. As a python user & developer, it's often to stay with some old version of python, because some package's version constraints, or we need to support old platforms.

The offical installer is the most trusted installaion source, but it's not provided with security releases. Lacking of installers makes installaion extreme difficult (impossible for end users), and there's no (free) way for a individual to create a code signed copy of python. Non-code-signed binarys will lead a lot of problem on recent operating systems.

The choice of providing no offical installer leads a lot of user stay with lastest bug-fix release and not upgrading to latest security releases. Individuals who want to stay with a old version must either use lastest bug-fix release or risk running a non-code-signed python binary. The former lacks recent python security fix, and the latter is vulnerable to binary modifications such as virus infection.

To sum up, if offical installer is provided, it will make life a lot easier for users who want to stay with old python version. It would be appreciated if you could accept my feature request.

Thank you!

components: Installation
messages: 387774
nosy: zby1234
priority: normal
severity: normal
status: open
title: [feature request] Please provide offical installers for security releases
type: enhancement
versions: Python 3.10

Python tracker <report at bugs.python.org>

More information about the New-bugs-announce mailing list