Okay, I’ve put together a pull request which captures everything we’ve been discussing:
- New registry of reserved subdirectory names under
.dist-info(along with backwards compatibility testing of existing subdirectories) - Addition of
[additional-files]table topyproject.tomland the optionalsbomskey. - Removed the
Sbom-Filemetadata field, added to “Rejected Ideas” with justification.
Because a lot of the above are net-new mechanisms for packaging I would appreciate a thorough review of the language I’m using to specify them, I took my best shot on getting something to look at quickly. Happy to incorporate any feedback!
I didn’t attempt to define future [additional-files] keys very tightly, only that it’s a table for putting files into specific places in the archive based on the key. If we want to define it more rigidly that’s fine, in the current draft I’m leaning on the definition of the sole sboms key.