Important Update for Accountants: Enhancing Ledger Accuracy and Transaction Exports
We’re rolling out an update to improve the clarity and reliability of our ledger, especially for accounting purposes. This will make tracking changes like edits and refunds much more straightforward in your transaction exports. This announcement explains: Why we’re making this change: To address issues with how edited transactions wereContinue Reading
New Expense Submission Flow – Public Beta
Over the past few cycles, we have been working towards upgrading and integrating a New Expense Submission flow into the Dashboard. We have tested and trialed our work and are ready to gather user feedback! To activate the public beta, navigate to your profile image in the top right-hand cornerContinue Reading
Development – Cycle Two Reflection and Cycle Three Overview
Reflection of Cycle Two, the second cycle of 2025, and an overview of Cycle Three. Providing insight into our product roadmap and, subsequently, the projects being worked on in our six-week cycles. Cycle Two Reflection Cycle 2 was our first time committing engineering resources to address some of theContinue Reading
Development – Cycle One Reflection and Cycle Two Overview
Here is a reflection of Cycle One, the first cycle of 2025, and an overview of Cycle Two. Providing insight into our product roadmap and, subsequently, the projects being worked on in our six-week cycles. Cycle One Reflection During Cycle One of 2025, we: Deprecated the old host reportsContinue Reading
Development – Cycle Eight Reflection and Cycle One of 2025 Overview
Here is a reflection of Cycle Eight, the last cycle of 2024, and an overview of the first Cycle of 2025 – Cycle One. Providing insight into our product roadmap and, subsequently, the projects being worked on in our six-week cycles. Cycle Eight Reflection Cycle 8 is the lastContinue Reading
Development – Cycle Seven Reflection and Cycle Eight Overview
Here is a reflection of Cycle Seven and an overview of the current; Cycle Eight. Providing insight into our product roadmap and, subsequently, the projects that are being worked on in our six-week cycles. Cycle Seven Reflection Host Efficiency We expanded the off-platform transactions tool, and fiscal hosts canContinue Reading
Cycle Seven Overview
The yearly Open Collective retreat shuffled our schedules around a bit: We used the two weeks before the retreat to tie up loose ends and take care of outstanding issues. We ended the retreat with a two day hackathon which gave the team an opportunity to propose pet projects andContinue Reading
Preventing ZIP parser confusion attacks on Python package installers
The Python Package Index is introducing new restrictions to protectPython package installers and inspectors from confusion attacks arisingfrom ZIP parser implementations. This has been done in response tothe discovery that the popular installer uv has a different extraction behaviorto many Python-based installers that use the ZIP parser implementationprovided by theContinue Reading
PyPI Phishing Attack: Incident Report
Incident Report: Phishing Attack Over the past few days, a phishing attack targeting PyPI users via email was uncovered.Our initial report was posted to raise awareness of the attack,and to provide some initial details on the attack vector. Social media posts linking to the initial report have been shared widely,PyPIContinue Reading
PyPI Users Email Phishing Attack
Read the follow-up post: Phishing Attack Follow-Up (Ongoing, preliminary report) PyPI has not been hacked, but users are being targeted by a phishing attackthat attempts to trick them into logging in to a fake PyPI site. Over the past few days, users who have published projects on PyPIwith their emailContinue Reading