In 2023 PyPI completed its first security audit, and I am proud to announce that we have now completed our second external security audit. This work was funded by the Sovereign Tech Agency, a supporter of Open Source security-related improvements, partnering with Trail of Bits to perform the audit. ThanksContinue Reading
This post will drill deeper into two recent supply chain exploits, targeting users of popular PyPI packages – litellm & telnyx. We also provide Python developers and maintainers with guidance on what they can do to prepare and protect themselves from future incidents. What happened with LiteLLM and telnyx? AfterContinue Reading
TLDR ; We are rolling out an important improvement to how payees connect their PayPal accounts when submitting expenses on Open Collective. This update affects all fiscal hosts that use PayPal to pay expenses. Payees must now connect their PayPal account instead of typing an email. Open Collective gets theirContinue Reading
TL;DR: We are introducing a new pricing structure for Organizations. We have already been in touch privately with all impacted Organizations. The new model replaces percentage-based fees with a usage-based approach. Organizations choose a plan that matches their activity levels and needs. Hosted Collectives remain unchanged and are not subjectContinue Reading
On Tuesday, February 27 at 9:00 CET (8:00 UTC, 4:00 New York, 21:00 New Zealand), we will upgrade our production database to a higher-performance plan. As usage and data volume have grown, this upgrade is necessary to improve performance, reduce timeouts, and increase overall stability. During the migration, the platformContinue Reading
We are moving forward with our sidebar reorganization campaign! We are still primarily focusing on organization dashboards (which have the highest financial complexity) and gradually introducing changes to individual and collective dashboards. As a reminder, the intention behind this redesign is to make the platform more coherent, intuitive, and welcoming,Continue Reading
Providing insight into our product roadmap and, subsequently, the projects being worked on in our six-week cycles.  Cycle Seven In Review This cycle ran from November 2025 through January 2026 and focused on finalizing major financial sustainability feature work, improving user onboarding and security, and tidying up platform infrastructure.Continue Reading
Hi everyone, We are currently refreshing our marketing pages to better explain what Open Collective is and, more importantly, why this community matters. The heart of our platform isn’t the code—it’s the Collectives doing the work and the Fiscal Hosts supporting them. To help us welcome more people into theContinue Reading
Some of our team, and members of the OFi and Open Collective family, will be in Brussels next week for FOSDEM 2026 (Saturday, January 31, 2026 and Sunday, February 1, 2026). We would love to meet in person, catch up with friends, and connect with new people who are curiousContinue Reading
Hello there! I am Maria, the inaugural PyPI Support Specialist. I go by “Thespi-Brain” on GitHub. I wanted to provide a dispatch of how this past year (and a half!) has been regarding my role and PyPI. PyPI has now reached over a million users and has over 700,000 projects.Continue Reading