|
|
|
|
|
|
by toyg
907 days ago
|
|
|
I suspect it has more to do with the legal backchatter on supply-chain attacks in opensource. The likes of GitHub and GitLab already have a bunch of features they can point at, should a lawyer come knocking; PyPi doesn't have anything. |
|
|