Pypi invite sent https://pypi.org/manage/project/windrose/collaboration/

Pypi invite sent https://pypi.org/manage/project/windrose/collaboration/

Accepted and added the upload token to the secrets here. The sdist and wheel tests are passing but an upload to PyPI only happen if we have a tag. See https://github.com/python-windrose/windrose/runs/6292093461?check_suite_focus=true

I'll try to get to a new release that has the fix for #170 later today.

You probably should enable 2FA on your Pypi account.
I personnally use Authy https://authy.com/ but hardware key seems to also be supported (ie Yubikey or any other U2F/FIDO2 keys)

You probably should enable 2FA on your Pypi account.

I had it enabled and was bitten really badly by it: pypi/support#1201

I believe they have better recovery mechanisms so and I should try to re-enable it.

you need to store you recovery keys and Pypi ask for one key before adding your 2FA application code (to ensure that you keep recovery keys somewhere)

you need to store you recovery keys and Pypi ask for one key before adding your 2FA application code (to ensure that you keep recovery keys somewhere)

Yeah. I had a bad luck of having my phone, with the Google Authenticator, my laptop, and my physical notebook with the recovery keys stolen with my backpack. Should probably not carry all together in a single place :-)

However, most 2FAs I had allowed me to recover by other means in a matter of minutes, not PyPI. It took them months to process my request. Anyway, I'm enabling it again.

That's why I prefer Authy over Google Auth... Because of Sync accross several devices

That's why I prefer Authy over Google Auth... Because of Sync accross several devices

I use it in conda-forge but never crossed my mind to use it for my own accounts. I'll give it a go. Thanks!

PS: this one is ready to go.