Summary: The Python Package Index (PyPI) has introduced a new feature that enables package developers to archive projects, indicating they will no longer receive updates. This move aims to enhance supply chain security by clearly signaling to users the maintenance status of Python libraries. Archived projects will remain accessible on PyPI, and developers are encouraged to provide alternatives before archiving their packages.
Affected: Python Package Index (PyPI)
Keypoints :
- Package developers can now archive projects to inform users about the lack of future updates.
- Archived projects will still be available for installation, but users should not expect further maintenance.
- PyPI has previously implemented a quarantine feature to manage suspicious projects, enhancing user safety.
Source: https://thehackernews.com/2025/02/pypi-introduces-archival-status-to.html