Not able to login to my pypi account and my production package is also removed without any information on mail

My username is hodler0 on pypi and i had a package called “taoreg”

it got removed suddenly without any specific reason or mail. I am surpirsed and dont know what to do - i have contacted admin and support of pypi but havent got any response

It did had some obfuscrated code but then i quickly pushed another update with Non-Obfuscrated code, so that shouldnt be a problem.

i cant reupload the package with the same name “taoreg”

Anyone pls guide what can we do in this situation,

Thanks

Just wait. The PyPI admins have a long backlog to deal with before they’ll get to you.

Obfuscated code usually means malware so I suspect your whole project and account are under some kind of temporary quarantine until an admin has a chance to triage the situation properly.

2 Likes

thanks for the revert.

Yes i thought so, does pypi checks for malicious code themselves or someone else have to report it ?

Also can i escalate the issue, as it is production package with some userbase.

Thanks

Some independent groups go hunting for malware on PyPI I believe. No idea what happens between their detecting something an PyPI deleting it.

You can tell people to pip install git+https://github.com/you/taoreg or similar if they’re that desperate to get your package soon.

Edit: Or this:

pip install https://files.pythonhosted.org/packages/73/a4/78581e9f4a054d233f76c5ae7c3a375b04a83266eff413e2aebfffa65135/taoreg-0.1.2-py3-none-any.whl