TL;DR: Badges are not magic. They are just image hotlinks, and therefore you need to be able to trust the third party who serves them.
[Read More]
Building Bots to mend Broken Badges (or how to get your GitHub account suspended)
TL;DR: Many badges were broken since they were using the shuttered pypi.in site. I wrote a bot that could fix these and automatically submit pull requests with the changes. And then I had my GitHub account suspended. Do not make automatic unsolicited pull requests.
[Read More]