[Catalog-sig] I removed a egg in pypi
Pablo Martin
pmartin at yaco.es
Thu Aug 9 17:51:49 CEST 2012
2012/8/9 julien tayon <julien at tayon.net>
> 2012/8/9 Pablo Martin <pmartin at yaco.es>:
> > Hi,
> Hello,
>
> For the future, you can use
> http://pypi.python.org/pypi/pypi-stat/1.2.2 : it stores a time serie
> of a package stats, upload, revisions ... locally in an easily
> accessible json.
>
>
Ok, thanks. But is there some possibility to get the info removed? is there
some way to restore the old data?
Sorry by my clumsiness
> btw, I intend for research purpose to upload a malvelant package on
> pypi to test the security. Would calling it dont_install a good idea?
> (it would modify a dotfile (.bashrc), delete or create a file in the
> PATH, call an outer webservice to simulate an information leak). The
> doc would ofc tell DONT INSTALL.
>
> I also want to test the openBSD pkg_add (systrace jails/stuff) to
> propose an automated installation checking for malvolent stuff this
> way.
>
> Cheers,
> --
> Julien
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.python.org/pipermail/catalog-sig/attachments/20120809/26232142/attachment.html>
More information about the Catalog-SIG
mailing list