[Catalog-sig] pre-PEP: transition to release-file hosting at pypi site
Lennart Regebro
regebro at gmail.com
Mon Mar 11 18:45:37 CET 2013
On Mon, Mar 11, 2013 at 6:42 PM, PJ Eby <pje at telecommunity.com> wrote:
> On Mon, Mar 11, 2013 at 12:45 PM, Lennart Regebro <regebro at gmail.com> wrote:
>> On Mon, Mar 11, 2013 at 5:12 PM, PJ Eby <pje at telecommunity.com> wrote:
>>> On Mon, Mar 11, 2013 at 7:14 AM, Donald Stufft <donald at stufft.io> wrote:
>>>> 1) Proof of what? That it's insecure? That it harms uptime? That it violates people's privacy?
>>>
>>> That any of those things apply to anybody who *isn't using those packages*.
>>
>> If nobody is using the packages, it does indeed harm no-one.
>
> Then there is no reason to ban them.
So, we should not remove the links for external packages until
somebody traverses those links? But as soon as somebody asks for those
links, we should remove them? In fact before we give them the link?
That to me, is indistinguishable from removing the links.
//Lennart
More information about the Catalog-SIG
mailing list