You're looking at StableBuild's Deleted PyPI mirror - where we index all deleted packages from the Python package registry.
tosa-serialization-lib was reported malicious
OSV:MAL-2025-191908 - Malicious code in tosa-serialization-lib (PyPI)

tosa-serialization-lib
2.0.0

This version was deleted from PyPI around 2025-10-14. Installing fails with:
$ pip3 install tosa-serialization-lib==2.0.0 ERROR: Could not find a version that satisfies the requirement tosa-serialization-lib==2.0.0
View other deleted versions of tosa-serialization-lib

Install through StableBuild

You can install this package from StableBuild's PyPI snapshots from before the version was deleted:
pip3 install \ -i https://YOUR_API_KEY.pypimirror.stablebuild.com/2025-10-13/ \ tosa-serialization-lib==2.0.0
Sign up for StableBuild to get an API key (it's free and takes <60 seconds!)

Or, download files manually

And install manually via pip:
tosa_serialization_lib-2.0.0.tar.gz (1.3KB)