[Distutils] PyPI abuse

Hi all, I know it's been debated here whether there should be some kind of filtering on uploaded packages on PyPI, but today someone, either an automated tool or a silly guy, started to upload dozens of "Xxx 0.1.0" where "Xxx" is some "surname", here is latest variant:

Re: [Distutils] Which commercial vendor?

Thomas Güttler writes: > Let's look back. How was this in the past? Maybe five years ago? That's a very vague question. What kind of answer do you want? Is it one you have an answer for already; and if so, what is the point of your question here? I don't doubt

Re: [Distutils] Which commercial vendor?

Am 08.04.2017 um 01:51 schrieb Wes Turner: AFAIU, the only way to read the package version from the {git, hg, } source repository is to run the setup.py. I see. This is the only way at the moment. Let's look back. How was this in the past? Maybe five years ago? Regards, Thomas