I hope this was some of the typosquatting fuckers getting caught.
I normally hate the idea of a service being able to provide this information.
But pypi is the public square, and those who choose illegal actions in it are actively causing harm to innocent people who can’t know better.
I feel like PyPI is a good example of requesting from users (uploaders) the bare minimum information necessary to provide the service, which is to offer the packages for download.
Good response from PyPI and interesting how the user data they store is pretty minimized.
Everybody loves to hate Python but there are some INCREDIBLY smart people working on PyPi, and that especially includes the security side.
VPNs are self-defense.
I hope this was some of the typosquatting fuckers getting caught.
I normally hate the idea of a service being able to provide this information.
But pypi is the public square, and those who choose illegal actions in it are actively causing harm to innocent people who can’t know better.
I feel like PyPI is a good example of requesting from users (uploaders) the bare minimum information necessary to provide the service, which is to offer the packages for download.
Good response from PyPI and interesting how the user data they store is pretty minimized.
Everybody loves to hate Python but there are some INCREDIBLY smart people working on PyPi, and that especially includes the security side.
VPNs are self-defense.