Comments on the community package: - pypi.io redirects to pypi.org. - It doesn't look like pypi.org is for production use at this point (big red warning). - My package checks the PGP signature, this one doesn't.