The PSF conducted three surveys to gather community requirements that would drive future development. The feedback summary is available on Python Software Foundation's blog: pyfound.blogspot.com/2021/12/pypi-u…

Without phoning a friend (or querying the world wide web)... How many downloads do you think PyPI served in 2021?

The answer is: One hundred twenty-six billion five hundred forty-five million seven hundred seventy thousand and sixty-six downloads accounted for in 2021. 126,545,477,066 Thanks Google Cloud BigQuery for making it possible for us to track this scale. packaging.python.org/en/latest/guid…

Second question! How much bandwidth does it take to serve 126,545,477,066 downloads in a year?

We are hiring two contract developers to build organization accounts for @PyPI. This is a unique opportunity to flex your skills and develop next-gen features for PyPI. More details at pyfound.blogspot.com/2022/02/we-are…

In total PyPI served 324.1 petabytes in 2021, that's an average bandwidth of 82.2 Gbps for the entire year. We and the entire Python community owe Fastly immense gratitude for providing this CDN service, their support makes PyPI as you know it possible.

Get paid to work on PyPI! One week left to submit your proposal!

One week left to respond to this request for proposals to fulfill paid contract work on Python Package Index!

It's #GivingTuesday Become a Supporting Member of the Python Software Foundation! Donate to the PSF to further the development and adoption of Python. Your donation helps support sprints, meet-ups, and community events. psfmember.org

Incident report on malicious takeover of ctx package on PyPI has been published. Read details, mitigation, analysis, and more at python-security.readthedocs.io/pypi-vuln/inde…

The PyPA has voted to accept two new member projects: pypi.org/p/pip-audit & the corresponding GitHub action, github.com/pypa/gh-action… 🎉 pip-audit audits Python environments and dependency trees for known vulnerabilities, and the action lets you easily run these audits in CI.

Big thanks and a shoutout to AWS Open Source for providing credits to operate our backends on Amazon Web Services since the re-launch on the warehouse codebase in 2018.

We’re very glad you’re here. blog.pypi.org/posts/2023-03-…

Thanks to Amazon Web Services, Python Software Foundation is hiring for a Safety and Security Engineer focused on PyPI! Read about how the role will be funded, what will be worked on, and how to apply at blog.pypi.org/posts/2023-05-…

PEP 658 has finally landed on PyPI! Wheels uploaded as of about 15 minutes ago now have the appropriate information served from the simple APIs, and METADATA files available on files.pythonhosted.org.

New user and new project registrations on PyPI are temporarily suspended. See details at status.python.org/incidents/qy2t…

The PSF was subpoenaed for the first time in March/April 2023 for for PyPI user data. Read our transparency blog post here: blog.pypi.org/posts/2023-05-…

An important update on our efforts to secure PyPI with multi-factor authentication: blog.pypi.org/posts/2023-05-…

Happy Friday! It has been a busy week on our blog, but we're wrapping it up with an update on some of the work that's been going on in the background lately to ensure the privacy and security of PyPI users: blog.pypi.org/posts/2023-05-…

upload.pypi.org now enforces that users with 2FA enabled must use an API token or Trusted Publisher configuration in place of their passwords. Read the announcement and details at: blog.pypi.org/posts/2023-06-…