pypi.org

Item: pypi.org
Rating: 5
Author: AssetSignet

United States Valid HTTPS 10.8 years Updated 9 hours ago

Report ID: #198962B2 Verified

100

Very Safe

Verdict at a glance

IP Address151.101.192.223

Server LocationUnited States

RegistrarGandi SAS

Domain Age10.8 years

Full report ↓ Run a Free Check

pypi.org Trust Review

pypi.org is the Python Package Index, the main package repository for Python developers. The domain shows a U.S. location, HTTPS with a current certificate, and a 10.8-year registration history, which are all consistent with a long-running software infrastructure service.

IP Address · Server Location

151.101.192.223

United States

SSL Certificate

Valid HTTPS

GlobalSign Atlas R3 DV TLS CA 2025 Q4

Valid Until: 2027-01-29

Registrar

Gandi SAS

Registered On: 2015-07-24

10.8 years

Very Safe

100/100

Verdict at a glance

What PyPI Is

PyPI is the official package index for the Python ecosystem, where developers publish and install libraries used in applications, data work, automation, and web development. The technical signals here are broadly reassuring: HTTPS is enabled, the certificate is valid, and the domain has been registered since 2015. That does not prove the site is risk-free, but it fits a mature, widely used developer platform rather than a newly created or disposable domain.

Reputation And Verdict

In context, PyPI has strong legitimacy because it is central to Python software distribution and is referenced constantly by developers, documentation, and tooling. The main risk is not brand legitimacy but supply-chain hygiene, since package registries can be targeted by typo-squatting or malicious uploads. Overall, pypi.org appears credible and established, with low domain-level concern and the usual caution appropriate for any software package repository.

Related Domains

What looks good

Properly configured DNS records
Has MX records (capable of email)
Domain age above the 1-year threshold
No suspicious port-scan footprint

What to watch

No independent third-party reviews available
No SPF / DMARC records (email spoofing risk)
Industry of the site is unclear from infrastructure alone

Frequently Asked Questions

Is pypi.org a phishing website?

Our scanner does not perform visual similarity checks. We can only confirm that no obvious infrastructure markers (cert mismatch, fresh registration with high traffic) were triggered.

What looks risky about pypi.org?

For pypi.org we look at: age 10.8 yrs, SSL OK, registrar Gandi SAS and hosting in United States. Any single weak point can drag the technical confidence down.

How often is pypi.org re-checked?

By default the report is refreshed every 30 days, plus on every manual re-check from the dashboard.

Is the score enough to decide?

A high score is necessary but not sufficient. Always pair the report with a content-level sanity check before transacting.

What ISP serves pypi.org?

The current network announcement comes from Unknown, with the IP geo-located in United States.

This report is generated automatically from public technical signals. It is not legal or financial advice.

Vet your next domain in under 10 seconds.

No signup. No credit card. No hidden quotas.

Start a free check →