On Monday, October 23, 2017 at 7:32:03 AM UTC-5, Erik Bray wrote: > > > I also balk at the idea of shipping a crippled pip. > > It's not crippled if you don't need it to install from HTTPS which not > everyone does. >
I agree with Emmanuel that providing "pip" without HTTPS is shipping a broken product. While there are other uses for "pip", by far the most common is to install Python packages off PyPI, which requires HTTPS. For the same reasons Emmanuel lists for R, installing Python packages via manual download and then pip breaks down fast for all but the simplest packages. I once installed "snappy" [1] into a copy of SageMath on macOS where Sage's pip lacked OpenSSL support via such manual downloads. I succeed but it was quite painful and in any event I'm a maintainer of said package... Best, Nathan [1] https://pypi.python.org/pypi/snappy/ -- You received this message because you are subscribed to the Google Groups "sage-devel" group. To unsubscribe from this group and stop receiving emails from it, send an email to sage-devel+unsubscr...@googlegroups.com. To post to this group, send email to sage-devel@googlegroups.com. Visit this group at https://groups.google.com/group/sage-devel. For more options, visit https://groups.google.com/d/optout.