On 10 Mar, 2013, at 22:16, Donald Stufft <don...@stufft.io> wrote: > > There isn't a good middle ground here, any externally hosted or spidered file > leads us back to at least 2 of the 3 major issues I outlined. The end goal > *needs* to be that all external links are removed from PyPI's simple page, > and only files hosted on PyPI are accepted there.
Why is that? It there something in the proposed package signing solution that won't work when files aren't on PyPI? If so, will it still be possible to run in-house package repositories (partial PyPI mirrors and/or repositories with non-public software)? Ronald _______________________________________________ Catalog-SIG mailing list Catalog-SIG@python.org http://mail.python.org/mailman/listinfo/catalog-sig
