Comment by zokier
1 year ago
At least you can't blame pypi for ignoring the report, and tbh I find this response time remarkably quick. It wouldn't have been far fetched to imagine someone in their position just trying to ignore/downplay/dispute this sort of reports.
As the author of the post noted above, the pypi maintainers have been wanting to get rid of pgp for awhile.
The post gave them excellent additional justification to.