PMXBOT Log file Viewer

Help | Karma | Search:

#pypa-dev logs for Saturday the 23rd of January, 2016

(Back to #pypa-dev overview) (Back to channel listing) (Animate logs)
[01:07:17] <carljm> ErikRose: Hmm. I usually figure that I'd better trust my user-installed virtualenv, or I'm hosed regardless.
[01:07:41] <carljm> (By user-installed I mean --user; or system-wide, whatever.)
[01:07:53] <carljm> It has pip bundled with it.
[01:11:12] <dstufft> carljm: I think the thing is, what if that doesn't have pip8 already
[01:12:51] <carljm> Yeah, installing/upgrading that could be MITMed.
[01:13:31] <carljm> I guess I'm willing to trust HTTPS on a one-time basis per development machine. If I weren't willing to do that, I'd need pipstrap.
[01:13:57] <carljm> (For servers I'd want to do the equivalent of pipstrap, but I'd probably just bundle a copy of pip 8+ in my Ansible repo.)
[01:40:59] <ErikRose> Good, I think we're all on similar pages.
[01:42:05] <ErikRose> Dev machines are up to date for me; it's non-ephemeral servers that are a pain.
[01:42:49] <ErikRose> This lets devs enjoy pip 8 promptly even if they don't have control over the server.
[01:43:42] <ErikRose> Man, Debian is so far behind.
[01:44:17] <ErikRose> I almost threw virtualenv in there, too, but this is more of a drop-in replacement for Mozilla situations.
[01:45:09] <ErikRose> I still feel like I'm missing something, so I'm giving it the weekend until I actually recommend this to anyone.
[01:47:06] <agronholm> ErikRose: I'm transitioning to Docker based deployments which of course offer the same advantage
[01:47:14] <agronholm> ansible + docker = <3
[01:47:45] <ErikRose> Docker won me over in the last month or two as well. :-)
[01:48:06] <agronholm> I haven't figured out everything yet but I'm getting there
[01:48:07] <ErikRose> Right now my main project is ansible + iron.
[01:48:28] <agronholm> incidentally the warehouse project looks like an excellent practical example of a Docker based deployment
[01:48:32] <ErikRose> But I use docker as a dev env. It was a tricky migration from vagrant, but now I can run my tests in it on Travids.
[01:48:42] <ErikRose> That's gtk.
[01:49:13] <agronholm> nice
[03:49:30] <ErikRose> Any sense how frequently, across the union of all packages, a new version is published on PyPI?
[04:06:53] <dstufft> ErikRose: last I looked I think it was ~1000 new files a day
[04:07:08] <ErikRose> That is very useful; thank you! :-)
[14:35:11] <Ivo> Hey dstufft, could you do a 14.0.2 release of virtualenv for that zsh fix?
[19:33:45] <lifeless> o/
[19:41:52] <dstufft> Ivo: probably not today
[19:42:03] <dstufft> so much snow :|||
[19:42:29] <Ivo> cool
[19:42:51] <Ivo> how does snow stop project releases tho
[19:43:48] <Ivo> fingers get too cold to reliably type password for release key? :P
[19:56:48] <dstufft> Ivo: I have to keep blowing the drive
[19:56:52] <dstufft> to get rid of it
[19:57:02] <dstufft> https://caremad.io/s/CEYIPIYpq7/ I am dstufft of the north
[19:57:32] <Ivo> dayum
[19:57:37] <Ivo> you have a daughter or smth right?
[19:57:42] <Ivo> just put her on the job :D
[19:58:22] <Ivo> how does it accumulate on your beanie
[19:58:30] <Ivo> did you dive headfirst into it
[19:59:06] <dstufft> Ivo: it's still snowing :]
[19:59:24] <dstufft> but if I let it go too long it'll be even worse, so I have to keep going out
[19:59:37] <Ivo> is it forecast to stop snowing at any point in the near future?
[20:00:48] <dstufft> midnight
[20:00:56] <dstufft> it's dumping 3" an hour right now
[20:01:12] <dstufft> suppsodily the snow storm stopped moving and is just sitting on top of us now dumping snow on us
[20:02:25] <Ivo> i see, how that might build up
[20:06:26] <Ivo> noticed that scripttest docs weren't outputting all this stuff just before https://scripttest.readthedocs.org/en/latest/modules/scripttest.html#module-contents
[20:06:33] <Ivo> so now they are :D
[20:22:06] <Ivo> dstufft: so virtualenv is generating the wrong (static) `virtualenv-3.N` when it's installed from a wheel
[20:22:29] <dstufft> I thought we got rid of the virtualenv-N
[20:23:04] <dstufft> hmm
[20:23:05] <dstufft> guess not
[20:23:07] <dstufft> we should!
[20:24:55] <Ivo> I think... we thought of getting rid of it
[20:25:10] <Ivo> but evidently decisive action was not taken
[20:36:12] <Ivo> dstufft: https://github.com/pypa/virtualenv/pull/852
[20:41:47] <Ivo> these two can be closed now? https://github.com/pypa/pip/pull/2393 & https://github.com/pypa/pip/issues/3336
[23:20:03] <pmxbot> jaraco pushed 1 commit to setuptools (https://bitbucket.org/pypa/setuptools/) :
[23:20:04] <pmxbot> Invoke import on importlib.machinery directly. Access an attribute to force import in delayed-import environments. Fixes #487.
[23:26:09] <pmxbot> jaraco pushed 1 commit to setuptools (https://bitbucket.org/pypa/setuptools/) :
[23:26:09] <pmxbot> Merged in svetlyak40wt/setuptools/svetlyak40wt/make-194-same-level-header-as-other-vers-1453106898145 (pull request #171)
[23:26:09] <pmxbot> jaraco pushed 3 commits to setuptools (https://bitbucket.org/pypa/setuptools/) :
[23:26:09] <pmxbot> Make 19.4 same level header as other version numbers.
[23:26:09] <pmxbot> Make all headers on the same level in CHANGES.txt.
[23:26:09] <pmxbot> Merged in svetlyak40wt/setuptools/svetlyak40wt/make-194-same-level-header-as-other-vers-1453106898145 (pull request #171)
[23:45:49] <pmxbot> jaraco pushed 2 commits to setuptools (https://bitbucket.org/pypa/setuptools/) :
[23:45:49] <pmxbot> Bumped to 19.4.1 in preparation for next release.
[23:45:49] <pmxbot> Added tag 19.4.1 for changeset 0bda3291ac72