Skip to content

Security page points everyone to use "Report as malware" even when not malware #16189

New issue
New issue
Open
Open
Security page points everyone to use "Report as malware" even when not malware#16189
Labels
HTMLrequires change to HTML filesdocumentationneeds discussiona product management/policy issue maintainers and users should discuss
@miketheman

Description

@miketheman
miketheman
opened on Jun 28, 2024

On https://pypi.org/security/

The current guidance for folks is to use the in-app reporting for:

Valid malware reports may include examples of typo-squatting, dependency confusion, data exfiltration, obfuscation, command/control, etc.

Should we update the phrase on the button, and update other processes etc to match, or should we create a secondary notification channel for non-malware problems?

Metadata

Metadata

Assignees

No one assigned

    Labels

    HTMLrequires change to HTML filesdocumentationneeds discussiona product management/policy issue maintainers and users should discuss

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions