Skip to main content

Collection of utilities for interacting with PyPI

Project description

Twine is a utility for interacting with PyPI.

Currently it only supports registering projects and uploading distributions.

Why Should I Use This?

The biggest reason to use twine is that it securely authenticates you to PyPI over HTTPS using a verified connection while python setup.py upload only recently stopped using HTTP in Python 2.7.9+ and Python 3.2+. This means anytime you use python setup.py upload with an older Python version, you expose your username and password to being easily sniffed. Twine uses only verified TLS to upload to PyPI protecting your credentials from theft.

Secondly it allows you to precreate your distribution files. python setup.py upload only allows you to upload something that you’ve created in the same command invocation. This means that you cannot test the exact file you’re going to upload to PyPI to ensure that it works before uploading it.

Finally it allows you to pre-sign your files and pass the .asc files into the command line invocation (twine upload twine-1.0.1.tar.gz twine-1.0.1.tar.gz.asc). This enables you to be assured that you’re typing your gpg passphrase into gpg itself and not anything else since you will be the one directly executing gpg --detach-sign -a <filename>.

Features

  • Verified HTTPS Connections

  • Uploading doesn’t require executing setup.py

  • Uploading files that have already been created, allowing testing of distributions before release

  • Supports uploading any packaging format (including wheels).

Installation

$ pip install twine

Usage

  1. Create some distributions in the normal way:

    $ python setup.py sdist bdist_wheel
  2. Register your project (if necessary):

    $ # One needs to be explicit here, globbing dist/* would fail.
    $ twine register dist/project_name-x.y.z.tar.gz
    $ twine register dist/mypkg-0.1-py2.py3-none-any.whl
  3. Upload with twine [1]:

    $ twine upload dist/*
  4. Done!

Options

$ twine upload -h

usage: twine upload [-h] [-r REPOSITORY] [-s] [--sign-with SIGN_WITH]
                    [-i IDENTITY] [-u USERNAME] [-p PASSWORD] [-c COMMENT]
                    [--config-file CONFIG_FILE] [--skip-existing]
                    dist [dist ...]

positional arguments:
  dist                  The distribution files to upload to the repository,
                        may additionally contain a .asc file to include an
                        existing signature with the file upload

optional arguments:
  -h, --help            show this help message and exit
  -r REPOSITORY, --repository REPOSITORY
                        The repository to upload the files to (default: pypi)
  -s, --sign            Sign files to upload using gpg
  --sign-with SIGN_WITH
                        GPG program used to sign uploads (default: gpg)
  -i IDENTITY, --identity IDENTITY
                        GPG identity used to sign files
  -u USERNAME, --username USERNAME
                        The username to authenticate to the repository as
  -p PASSWORD, --password PASSWORD
                        The password to authenticate to the repository with
  -c COMMENT, --comment COMMENT
                        The comment to include with the distribution file
  --config-file CONFIG_FILE
                        The .pypirc config file to use
  --skip-existing       Continue uploading files if one already exists

Resources

Contributing

  1. Fork the repository on GitHub.

  2. Make a branch off of master and commit your changes to it.

  3. Run the tests with tox

    • Either use tox to build against all supported Python versions (if you have them installed) or use tox -e py{version} to test against a specific version, e.g., tox -e py27 or tox -e py34.

    • Always run tox -e pep8

  4. Ensure that your name is added to the end of the AUTHORS file using the format Name <email@domain.com> (url), where the (url) portion is optional.

  5. Submit a Pull Request to the master branch on GitHub.

If you’d like to have a development environment for twine, you should create a virtualenv and then do pip install -e . from within the directory.

Code of Conduct

Everyone interacting in the twine project’s codebases, issue trackers, chat rooms, and mailing lists is expected to follow the PyPA Code of Conduct.

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

twine-1.7.0.tar.gz (29.5 kB view details)

Uploaded Source

Built Distribution

twine-1.7.0-py2.py3-none-any.whl (24.8 kB view details)

Uploaded Python 2Python 3

File details

Details for the file twine-1.7.0.tar.gz.

File metadata

  • Download URL: twine-1.7.0.tar.gz
  • Upload date:
  • Size: 29.5 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No

File hashes

Hashes for twine-1.7.0.tar.gz
Algorithm Hash digest
SHA256 58b3fd3827944fc755487d4099af255e95dbf70fb0a4badf23cb2584432f5e59
MD5 f1cc533f084fa93ba351ac94d56eea52
BLAKE2b-256 cf1170f34c07ef4d8761f58602f3cbfddcad30b4e0fb755c3e40016ce97e80b0

See more details on using hashes here.

File details

Details for the file twine-1.7.0-py2.py3-none-any.whl.

File metadata

File hashes

Hashes for twine-1.7.0-py2.py3-none-any.whl
Algorithm Hash digest
SHA256 533afff7df244b418c3196f8ca01bb5db926aacddd670751e532edd3b785595e
MD5 569055e6b2494a4e0c72b9fa12947b5f
BLAKE2b-256 989e52ad2cdbdc5ef2f3fd94818e6e5d81883939b2a0ebfb952780da3e9a4a01

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page