Thomas Kluyver

I think in the first instance, this should be reported to [warehouse](https://github.com/pypa/warehouse/issues), the code that runs the PyPI server. It shouldn't be accepting and ignoring an upload - it should...

So if I'm understanding this correctly, the steps to be taken are: - [x] Remove `libcrypt.so.1` from the libraries whitelist for manylinux1 ([PEP 513](https://www.python.org/dev/peps/pep-0513/)) and manylinux2010 ([PEP 571](https://www.python.org/dev/peps/pep-0571/)) - https://github.com/python/peps/pull/1124...

Yup, updating the PEPs is done now: python/peps#1124.

To check that, I assume one can run `ldd` on a relevant binary and check which libcrypt it's linked against? It would also be good if someone could provide a...

(While I'm not doing systematic testing, I did note somewhere that I haven't come across any wheels which fail to load. So just to confirm: I don't have `libcrypt.so.1`; removing...

Thanks @lkollar . I've updated the checklist above to point to those PRs. @zackw - we can probably work with it any form, but if it's easy to put an...

Something similar was suggested on pypa/warehouse#5420. The Warehouse maintainers might be able to say if it's practical to do something like that, and how to find all packages where the...

You can also now use `pip install .` to install a package built with Flit. I think `sudo` discards environment variables by default. On Linux, I can use `sudo --preserve-env=FLIT_ROOT_INSTALL`...

The PEP makes stub-only packages sound like a largely temporary workaround which shouldn't be needed longer term. Is that still the case, or are there a lot of stub-only packages...

If putting an `__init__.py` in there is OK, and stub-only packages are something that are likely to stick around beyond temporary workarounds, then I think I'm OK with putting a...