PMXBOT Log file Viewer

Help | Karma | Search:

#pypa logs for Monday the 22nd of February, 2016

(Back to #pypa overview) (Back to channel listing) (Animate logs)
[01:43:18] <benjaoming> Does uploading zip files on PyPi make a difference to Windows users?
[01:44:06] <benjaoming> ...asking for a friend who has a wheel-incompatible package :)
[02:48:44] <[Tritium]> benjaoming: zip sdists? eh, only if they are manually installing packages, and not using pip
[02:54:32] <benjaoming> [Tritium]: thanks! that was exactly what I wanted to know, gonna stop uploading .zips :)
[10:41:28] <dikiaap> Hi, I use command pip3 freeze --local | grep -v '^\-e' | cut -d = -f 1 | xargs -n1 pip3 install -U
[10:41:36] <dikiaap> to upgrade all package
[10:43:08] <dikiaap> but some package has error with old version. Its python-apt 0.7.8 in pip and 0.9.5 in repository elementaryOS. and default is using 0.9.5
[10:44:48] <dikiaap> how can I ignoring python-apt 0.7.8. Its recommended if I using command above and command pip install -U python-apt
[10:52:41] <Ivo> dikiaap: you should ask the python-apt project to make a newer version release on pypi
[10:53:48] <dikiaap> yeah, I need that
[10:53:56] <dikiaap> Ivo: but how
[10:54:18] <Ivo> you find out how to contact them
[10:54:49] <Ivo> are you trying to upgrade system python packages using pip? That might not be the best idea
[10:55:02] <Ivo> elementaryOS might work best with particular versions
[10:56:06] <dikiaap> yup. eOS has newer version than on pyip.
[10:56:18] <Ivo> If you are wanting to do your own python developement with more up to date packages, I recommend working in a python virtualenv https://packaging.python.org/en/latest/installing/#creating-virtual-environments
[10:58:55] <dikiaap> ww, If install it, I have many python version :D
[10:59:08] <Ivo> ?
[10:59:19] <Ivo> virtualenv doesn't give you different python versions
[11:01:30] <dikiaap> ok i know after read docs.
[11:08:45] <nikolaosk> hi
[11:08:53] <nikolaosk> I was wandering if specifing in setup.cfg
[11:08:55] <nikolaosk> [bdist_wheel]
[11:08:55] <nikolaosk> no-cache-dir = 1
[11:09:23] <nikolaosk> is enough to solve the dynamic requirements bug in pip7
[11:09:38] <nikolaosk> the one with the wheel cache
[11:10:46] <dstufft> nikolaosk: what bug is that?
[11:12:42] <Ivo> I don't know how no-cache-dir is supposed to work under a [bdist_wheel] section, or even taht it should
[11:12:58] <nikolaosk> calculating dynamic requirements in setup.py must be avoided in pip7
[11:13:45] <Ivo> nikolaosk: use requirement specifiers instead of runtime logic in your setup.py https://pip.pypa.io/en/stable/reference/pip_install/#requirement-specifiers
[11:14:10] <Ivo> / environment markers
[11:14:26] <Ivo> then wheels will just work
[11:14:52] <nikolaosk> I want to disable wheels
[11:15:07] <Ivo> can you show us your setup.py ?
[11:15:20] <nikolaosk> it's about a bugfix release for people with old setups
[11:15:41] <nikolaosk> https://raw.githubusercontent.com/scrapy/scrapyd/master/setup.py
[11:16:26] <Ivo> what is going wrong with a wheel for that?
[11:16:49] <Ivo> people have old setups, but a new pip, but old setuptools? :S
[11:17:05] <nikolaosk> I want to specify scrapy<1.0 for py2.7 and scrapy<0.20 for py2.6
[11:18:59] <Ivo> nikolaosk: so scrapy 1.0.5 does not work for python 2.6?
[11:20:15] <nikolaosk> scrapy0.20 doesn't
[11:22:13] <Ivo> 1.0.5 seems to be the latest on pypi
[11:22:35] <dstufft> nikolaosk: you can use environment markers to do that, but if you really want, you should make setup.py bdist_wheel error in your package
[11:23:10] <mattt> hi all, i use openstack-ansible, which basically builds all python components as python wheels
[11:23:15] <nikolaosk> this is about people that continue to use the old version
[11:23:24] <mattt> since the environment started pulling in wheel 0.29.0, i've had some wheels build that are not installable on my system
[11:23:29] <nikolaosk> and they are likely to use pip<7 without env markers
[11:23:51] <mattt> for example, on wheel 0.29.0, it's building cffi-1.5.2-cp27-cp27mu-linux_x86_64.whl, but then i cannot install that
[11:23:53] <dstufft> nikolaosk: pip has supported environment markers in wheels for as long as we have had wheels
[11:24:07] <Ivo> nikolaosk: if scrapy 1.x only supports python 2.7, then you should add [bdist_wheel]\npython-tag=py27 to your setup.cfg
[11:24:10] <dstufft> mattt: what version of pip?
[11:24:11] <mattt> on 0.26.0, it was building cffi-1.5.2-cp27-none-linux_x86_64.whl
[11:24:24] <mattt> dstufft: 7.1.2
[11:24:29] <dstufft> mattt: upgrade to pip 8
[11:24:37] <dstufft> or downgrade wheel
[11:24:50] <mattt> dstufft: works for me :) thanks!
[11:25:05] <mattt> (didn't realize it was hinged on pip version, which helps)
[11:25:54] <dstufft> mattt: yea, the wheel version controls what tags the wheel file will contain, the pip version controls what tags pip itself will accept
[11:26:23] <nikolaosk> how can I just make bdist_wheel fail?
[11:27:10] <dstufft> nikolaosk: override the command class with one that just always raises an exception
[11:27:26] <Ivo> nikolaosk: on pip 6, they can specify --no-use-wheel
[11:28:00] <Ivo> IIRC pip 1.5 won't use wheels by default?
[11:28:30] <dstufft> pip < 7 won't automatically build wheels
[11:28:38] <dstufft> er, < 7.1
[11:28:51] <Ivo> s/use/install
[11:31:15] <xafer> nikolaosk: cf https://github.com/pypa/pip/raw/develop/tests/data/packages/wheelbrokenafter-0.1.tar.gz for a dirty but simple example
[11:37:18] <nikolaosk> why leave the build artifacts lying around?
[11:37:44] <nikolaosk> wouldn't I want to fail before building?
[11:40:24] <Ivo> nikolaosk: your scrapyd classifiers currently say it's compatible with python 2.6, is that incorrect?
[11:44:06] <nikolaosk> yes
[11:44:24] <nikolaosk> and I want to drop python2.6 support, but not on a bugfix version
[11:44:52] <nikolaosk> so, I just want to make bdist_wheel fail
[11:45:00] <Ivo> does scrapyd 1.1.0 support 2.6?
[11:45:15] <nikolaosk> no
[12:03:34] <Ivo> nikolaosk: hopefully the two pull requests I made help demonstrate, at least for scrapyd's current/future versions
[12:38:21] <s3lext> is pip freeze same as list ?
[12:53:51] <Ivo> no
[12:53:57] <xafer> freeze ignores some packages (like pip, setuptools and some stdlib packages) while pip list prints everything
[13:16:53] <zakora> I didn't receive a confirmation email when registering on PyPI, is there a way to resend it?
[13:17:06] <zakora> this prevents me from registering a new package
[16:25:34] <mhils> dstufft: may I ask what's the state of https://www.python.org/dev/peps/pep-0458/ ?
[16:29:06] <Ivo> mhils: My guess is that it would only be worked on by existing people, *after* warehouse has replaced PyPI
[16:30:05] <mhils> so it's just the draft for now?
[16:30:15] <mhils> ("just")
[16:30:23] <Ivo> ya
[16:30:43] <dstufft> mhils: stalled until more pressing things and lower hanging fruit are taken care. Largely because the set of people who work on pip and PyPI *AND* who participate in the PEP process AND who know enough about cryptography to meanigfully review it and implement it... is mostly just me.
[16:31:03] <mhils> well, congratulations :P
[16:32:04] <Ivo> you are ofc welcome to work on a fork of warehouse & pip (& setuptools?) that implements it / gives feedback
[16:32:39] <mhils> :)
[16:32:45] <dstufft> yea that ^
[16:33:41] <mhils> I just stumbled upon it and was surprised at the complexity of the whole thing.
[16:34:17] <Ivo> man saying that over and over again for X hard feature that would be nice to have in an OSS really starts to feel shallow after a while lol
[16:35:08] <Ivo> mhils: or even just read over it carefully and write up some feedback, maybe ppl on the distutils ML would love to discuss it
[16:35:24] <Ivo> if that's your jam
[16:36:13] <mhils> didn't mean to pick on the people who actually do something, sorry :)
[16:36:36] <Ivo> I don't think anyone sees it as picking on
[16:36:50] <mhils> I was just wondering if there is actually a prototype created by the TUF guys or not.
[16:37:28] <dstufft> I Think they have a prototype somewhere... but I'm not sure that it's in a usable state
[16:39:01] <Ivo> I thought that https://pypi.python.org/pypi/tuf worked to some degree
[16:40:20] <Ivo> huh, apparently getting integrated with docker somehow
[16:40:43] <Ivo> https://blog.docker.com/2015/08/content-trust-docker-1-8/
[16:51:49] <mhils> lvo: yes - the key scheme in the blog post is way simpler though.
[16:52:08] <mhils> I think I need to dig and see if they just hide the complexity there or if they deploy a lite version of the whole thing.
[17:50:32] <amsharma> !logs
[17:50:32] <pmxbot> http://chat-logs.dcpython.org/channel/pypa
[17:51:15] <amsharma> Hey guys, does anyone have any idea if pypa (or pip) will be applying for GSoC this year
[17:51:24] <amsharma> under the python software foundation?
[22:54:53] <benjaoming> FYI this project has been alive for a bit of time in order to inform everyone of the baseline statistical correction needed for people to know *actual* downloads counts their projects are receiving: https://pypi.python.org/pypi/python-bogus-project-honeypot
[22:55:32] <ngoldbaum> benjaoming: although not CI infrastructure, right?
[22:56:47] <benjaoming> ngoldbaum: nah, it has 0% test coverage if that's what you mean!? :)
[22:57:20] <ngoldbaum> hehe, no, it's just not clear to me how much CI infrastructure contributes to that
[22:57:32] <ngoldbaum> although supposedly recent pip versions do a good job of caching
[22:57:35] <benjaoming> These are the figures that you can assume to subtract from your project's figures always:
[22:57:35] <benjaoming> Downloads (All Versions):
[22:57:36] <benjaoming> 209 downloads in the last day
[22:57:36] <benjaoming> 826 downloads in the last week
[22:57:36] <benjaoming> 2631 downloads in the last month
[22:57:38] <ngoldbaum> so even real downloads aren't really
[22:58:31] <benjaoming> ngoldbaum: true, if your project is a dependency of a lot of other projects, then their CIs account for a lot!!
[23:02:29] <njs> I wonder what I should think if I have a real project that receives substantially fewer downloads than that :-)
[23:03:14] <njs> I guess the part where it release weekly probably attracts a lot more fake downloads than are attracted to projects which release less often
[23:03:50] <njs> though using 'vanity python-bogus-project-honeypot' suggests some very weird download profiles (0 downloads for all the february releases!)
[23:15:13] <benjaoming> njs: definitely, these are the figures you should subtract from your project immediately after releasing. Daily downloads 1 month after releasing should not have the "209 downloads in the last day" subtracted. But everything should add the CI stuff that ngoldbaum mentioned, which is really hard to estimate as it's individual to any project :(
[23:17:31] <njs> monthly downloads in a month with 4 release will look very different than in a month with 1 release, too. the per-release downloads that vanity shows may be more useful, except that the numbers are hard to believe in this case :-)
[23:19:20] <njs> (maybe the best simple rule is: find the honeypot release that is closest in age to your last release, and subtract that many out of the downloads for your last release)