Publish ntia-conformance-checker and spdx-tools under a SPDX organisation on PyPI #227
Comments
|
@JPEWdev I recall you mentioning a Python related organization - was this one you were working on? |
|
Yes I asked for one but it is still pending |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
PyPI introduced PyPI Organizations last year:
https://blog.pypi.org/posts/2023-04-23-introducing-pypi-organizations/
It would be nice if the SPDX Project has a PyPI Organization presence
and "spdx-tools", "ntia-conformance-checker", and other Python packages from SPDX are published under this PyPI Organization.
This will aid the discovery of relevant official tools and libraries from SPDX Project itself,
and will also help with security as the users will know that the tool/library is published from an organisation that they trust.
A package published under a PyPI Organization will have the organisation name displayed as an owner like this
Request for an PyPI Organization name at https://pypi.org/manage/organizations/
Example of PyPI Organizations:
More info about the PyPI Organization https://docs.pypi.org/organization-accounts/
(A similar issue is opened at spdx/tools-python#837 )
The text was updated successfully, but these errors were encountered: