pypi / support

Issue tracker for support requests related to using https://pypi.org
95 stars 47 forks source link

PEP 541 Request: django-mongodb #4668

Open Jibola opened 2 months ago

Jibola commented 2 months ago

Project to be claimed

django-mongodb: https://pypi.org/project/django-mongodb

Your PyPI username

10gen: https://pypi.org/user/10gen/

Reasons for the request

The mongodb team has been working on a project we've named django-mongodb and it looks like during the development of this project, someone uploaded potentially malicious packages to the PyPI project name django-mongodb.

Uploading django_mongodb-5.0a0-py3-none-any.whl
100% ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━ 69.0/69.0 kB • 00:00 • 32.9 MB/s
WARNING  Error during upload. Retry with the --verbose option for more details.
ERROR    HTTPError: 400 Bad Request from https://upload.pypi.org/legacy/
         The name 'django-mongodb' isn't allowed. See https://pypi.org/help/#project-name for more information.

After it was taken down, the project name became unusable.

We'd like to get this project name and push our django-mongodb project to it.

Maintenance or replacement?

Replacement

Source code repositories URLs

https://github.com/mongodb-labs/django-mongodb

Contact and additional research

Original HackerOne report: https://hackerone.com/reports/2644912

Code of Conduct

aclark4life commented 1 week ago

@jamadden or @Thespi-Brain Any chance you can help with this one? Thanks

Thespi-Brain commented 1 week ago

Hi @aclark4life,

We are working through the PEP 541 issues/cases backlog in the order they came in to make it fair to all users. We will get to your request shortly, thanks for your patience!

aclark4life commented 1 week ago

Copy that, thanks @Thespi-Brain !

aclark4life commented 2 days ago

FYI testing over here https://test.pypi.org/project/django-mongodb/