https://community.cloudera.com/t5/Support-Questions/CML-Python-Package-Installation-Security/m-p/381738#M244382 <P>pip index url can be configured as an admin environment variable, but users can override the same with the project environment variable or manual override.<BR /><BR />utmost way is to make the cluster air gapped. As long as the cluster has internet gateway, sessions can reach internet to pull the packages</P> Mon, 08 Jan 2024 10:22:52 GMT Gopinath 2024-01-08T10:22:52Z https://community.cloudera.com/t5/Support-Questions/CML-Python-Package-Installation-Security/m-p/381690#M244369 <P>Hello,</P><P>I've noticed how the CML Terminal lets you install Python packages on the 'Net using pip.</P><P>(A gcc compiler is even available!)</P><P>Isn't that a security risk?</P><P>Is there a way to only allow package installation from an in-house repository?</P><P>Many thanks.</P> Tue, 21 Apr 2026 06:44:17 GMT https://community.cloudera.com/t5/Support-Questions/CML-Python-Package-Installation-Security/m-p/381690#M244369 phir1 2026-04-21T06:44:17Z https://community.cloudera.com/t5/Support-Questions/CML-Python-Package-Installation-Security/m-p/381738#M244382 <P>pip index url can be configured as an admin environment variable, but users can override the same with the project environment variable or manual override.<BR /><BR />utmost way is to make the cluster air gapped. As long as the cluster has internet gateway, sessions can reach internet to pull the packages</P> Mon, 08 Jan 2024 10:22:52 GMT https://community.cloudera.com/t5/Support-Questions/CML-Python-Package-Installation-Security/m-p/381738#M244382 Gopinath 2024-01-08T10:22:52Z