Tutorial project 'Publish to PyPI, and let's see how the *Python Software Foundation* interprets consent GDPR-wise'

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for Abdull from gravatar.com Abdull

Unverified details

These details have not been verified by PyPI
Project links
GitHub Statistics

View statistics for this project via Libraries.io, or by using our public dataset on Google BigQuery

Meta

License: MIT License (Copyright (c) 2016 The Python Packaging Authority (PyPA) Permission is hereby granted, free of char...)

Tags sample, gdpr, pypi, psf, pip, pii, privacy

Requires: Python >=3.7

Classifiers

Project description

Publish to PyPI, and let's see how the Python Software Foundation interprets consent GDPR-wise

Context

PyPI was subpoenaed, especially point 6:

A synopsis of all IP Addresses for each username from previous records were shared. These were sourced from our database records and are private to PyPI.

Steps to reproduce

  • Be in the European Union. No citizenship required.
  • Create an account at https://pypi.org/account/register/ (archive.is English localization memento from 24 May 2023 20:25:43 UTC). Notice that you don't have to provide any explicit consent to any terms and conditions.
  • Confirm verification e-mail. Notice it just contains a confirmation link, e.g. https://pypi.org/account/verify-email/?token=eyJhY3Rpb24iOiJlbWFpbC12ZXJpZnkiLCJlbWFpbC5pZCI6IjEyMzQ1IiwiYWxnIjoiSFMyNTYifQ.YWJjZA.bB3cVvD2EnTZ7sOD7XNPnxv0xgl9Q3svmcDCG8UTR9Q.
    • The token parameter value is an unencrypted, HMACSHA256-signed JSON Web Token, in this example it provides the following information (try it out at https://jwt.io/):
// header
{
  "action": "email-verify",
  "email.id": "12345",
  "alg": "HS256"
}

// payload
"abcd"

# see https://packaging.python.org/en/latest/flow/
# see https://packaging.python.org/en/latest/tutorials/installing-packages/
# see https://packaging.python.org/en/latest/tutorials/packaging-projects/

# assuming Debian 11 bullseye in the following

# get ensurepip, Debian apt-way:
sudo apt install python3-venv

pip install --upgrade pip setuptools wheel build

# inside your project
python3 -m build

# on success, shall end with line
# Successfully built gdpr-1.0.0.tar.gz and gdpr-1.0.0-py3-none-any.whl

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for Abdull from gravatar.com Abdull

Unverified details

These details have not been verified by PyPI
Project links
GitHub Statistics

View statistics for this project via Libraries.io, or by using our public dataset on Google BigQuery

Meta

License: MIT License (Copyright (c) 2016 The Python Packaging Authority (PyPA) Permission is hereby granted, free of char...)

Tags sample, gdpr, pypi, psf, pip, pii, privacy

Requires: Python >=3.7

Classifiers

Release history Release notifications | RSS feed

This version

1.0.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

gdpr-1.0.0.tar.gz (5.7 kB view hashes)

Uploaded Source

Built Distribution

gdpr-1.0.0-py3-none-any.whl (5.0 kB view hashes)

Uploaded Python 3

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page