oxy-zy
June 11, 2024, 7:20am
1
Hello,
Why it has to be manual and on-best-effort basis if it is such critical? Any ideas to automate it?
Mine for example hangs there also: Account recovery request · Issue #4150 · pypi/support · GitHub
Zy.
jeanas
June 11, 2024, 8:38am
2
Please read the previous discussions on this topic first.
Hello,
I’ve crashed my phone in early October and I lost my 2FA codes and access to PyPI.
So I added an issue in Issues · pypi/support · GitHub but it’s been now over 3 months and I have not seen any activity in the issue tracker since late September of last year - the issue tracker mentions that it can take a while but it’s been on full halt for almost 4 months at this point.
That has put an halt of any updates of my projects on PyPI, which is annoying to me, but not the end of the world (un…
Background
PEP 541 introduced an approval system for name transfers on PyPi. My understanding it that it was a response to the increasing number of zombie projects and typo squatters. In the former case, when unable to contact the owner of a dead project, a user can request an admin override and a name transfer. In the latter case, PyPi blocks projects whose names are similar to other projects to prevent the uploading of malware which is downloaded when users make a typo, a user can point to a …
1 Like
oxy-zy
June 11, 2024, 9:59am
3
Yes, and?
As per your suggestion, I’ve read that before already, even before creating the Github issue as it is not clear what to do without proper research.
PEP 541 does not apply to us, we paid for developers to transfer project to us and we are unable to accept it because TOTP failed, which also I suppose should trigger investigation why it happens (time zone changes maybe?).
Rosuav
June 11, 2024, 10:56am
4
Highly doubt that time zones affect TOTPs, unless you have some sort of non-compliant TOTP implementation.
It may be worth reviewing your internal procedures to figure out why you don’t have any of the recovery codes though.
2 Likes