Do you really want to package without _ssl?

[mattip]

The README says to run

py2 ../tool/release/package.py --archive-name=pypy-ece5745 --without-_ssl

On latest HEAD of py3.7, I changed the packaging script to by default run --embed-dependencies on linux, which will download, build, and link with OpenSSL1.1.1k. This is the latest version, and closes a few security issues. So I would recommend

• you update to the latest version of the package.py script
• your workflow should change to drop the --without-_ssl argument so _ssl is rebuilt with the latest OpenSSL version

[jsn1993]

ack