If you’re wondering what happened to this, we’re still at it. There were a few hiccups:
- OpenSSL announced a high-priority fix for March 15th, and we had no choice other than to wait for it.
- After the OpenSSL release went live today at 5pm CET, we started doing the four releases. Tags for installer-free releases (v3.7.13 and v3.8.13) were pushed to python/cpython. By mistake I also pushed the v3.9.11 tag early (
git push --tagspushes all of them). - Late in the process we discovered a compile error while building the Windows installer, introduced in the fix for BPO-46948. It affects all four releases.
- We decided to redo them after including the fix, as the Windows installer is one of the security fixes in each of those releases.
- I removed the already built artifacts as well as deleted the three tags mentioned above that were briefly in the python/cpython repo.
We will be restarting the releases in around 12 hours. The only difference will be the compilation error fix for the Windows installer. If you already built an upstream package off one of the stale tags, the purest option is to redo it tomorrow.
We are sorry for the inconvenience.