2FA Enforcement for TestPyPI
Starting today, all users must enable 2FA before they can perform any management actions on TestPyPI.
This change is in preparation for the scheduled enforcement of 2FA on PyPI at the end of 2023.
Previously the PyPI team has announced 2FA requirement for uploads, 2FA requirement for new user registrations on PyPI, and now the requirement extends that all users on TestPyPI.
How does this affect me?
If you only need to browse, download, and install packages from TestPyPI then a TestPyPI account isn't needed so this change does not affect you.
If you've already enabled 2FA on your TestPyPI account, this change will not affect you.
If you recently registered a new TestPyPI account, you are required to enable 2FA before you can perform any management actions. When attempting to perform a management action, you may see a red banner flash at the top of the page, and be redirected to the 2FA setup page for your account. You will still be able to log in, browse, and download packages without 2FA. But to perform any management actions, you'll need to enable 2FA.
Visit the 2FA FAQ for more details.
Mike Fiedler is the PyPI Safety & Security Engineer since 2023.