Index API| docs.pypi.org
Settings| docs.astral.sh
Read the official announcement on the PyPI blog as well! For the past year, we’ve worked with the Python Package Index (PyPI) on a new security feature for the Python ecosystem: index-hosted digita…| Trail of Bits Blog
The “Simple Repository API” that was defined in PEP 503 (and was in use much longer than that) has served us reasonably well for a very long time. However, the reliance on using HTML as the data exchange mechanism has several shortcomings.| Python Enhancement Proposals (PEPs)
ENOSUCHBLOG| blog.yossarian.net
This PEP proposes adding an anchor tag to expose the METADATA file from distributions in the PEP 503 “simple” repository API. A data-dist-info-metadata attribute is introduced to indicate that the file from a given distribution can be independently fetc...| Python Enhancement Proposals (PEPs)
This PEP proposes a collection of changes related to the upload and distribution of digitally signed attestations and metadata used to verify them on a Python package repository, such as PyPI.| Python Enhancement Proposals (PEPs)
This PEP specifies how to write a project’s core metadata in a pyproject.toml file for packaging-related tools to consume.| Python Enhancement Proposals (PEPs)
ENOSUCHBLOG| blog.yossarian.net