Notice: While JavaScript is not essential for this website, your interaction with the content will be limited. Please turn JavaScript on for the full experience.
...serialization (and caused some hoops for the json lib). PEP 3138 proposes to fix this by breaking the "repr is safe ASCII" invariant, and changing the way repr (which is used for persistence) outputs some objects, with system-dependent failures. Changing how str(container) works would allow easy debugging in the normal case, and retain the safety of ASCII-only for the machine-readable case. The only downside is that str(x) and repr(x) would more often be different -- but only in those cases wh...
...serial>, where the serial starts at zero or one (for the '<year>a' release) and is incremented with each subsequent database update within the year. As with other translated version identifiers, the corresponding Olson database version could be recorded in the project metadata. Version specifiers A version specifier consists of a series of version clauses, separated by commas. For example: ~= 0.9, >= 1.0, != 1.3.4.*, < 2.0 The comparison operator determines the kind of versi...
...algorithm must be sha256 or better; specifically, md5 and sha1 are not permitted, as signed wheel files rely on the strong hashes in RECORD to validate the integrity of the archive. PEP 376's INSTALLER and REQUESTED are not included in the archive. RECORD.jws is used for digital signatures. It is not mentioned in RECORD. RECORD.p7s is allowed as a courtesy to anyone who would prefer to use S/MIME signatures to secure their wheel files. It is not mentioned in RECORD. During extraction, wheel in...
...algorithms are mostly old, of poor quality and insecure. Users are discouraged from using them. The module is not available on Windows. Cross-platform applications need an alternative implementation anyway. Only DES encryption is guaranteed to be available. DES has an extremely limited key space of 2**56. MD5, salted SHA256, salted SHA512, and Blowfish are optional extensions. SSHA256 and SSHA512 are glibc extensions. Blowfish (bcrypt) is the only algorithm that is still secure. However it's in...