Python updates miscategorize 'PyPy.org is down' as a user error. #5725
Labels
L: python:pip
Python packages via pip
L:python:pip-compile
Python packages via pip-compile
L: python:pipenv
Python packages via pipenv
L: python:poetry
Python packages via poetry
python
Dependabot pull requests that update Python code
T: bug 🐞
Something isn't working
Is there an existing issue for this?
Code improvement description
When PyPI.org is down, Dependabot Core returns the update job as failed with a
private_source_authentication_failure
error.This means we categorize the issue as a 'non viable update' thinking it is a user-configuration problem when in fact it is a service issue that should trip alarms.
We should take the dependency source into consideration for pip specifically and check if there is a way we can do generically for package managers that don't throw a specific error for their community index being down.
The text was updated successfully, but these errors were encountered: