Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

build(deps): avoid version conflicts #636

Merged
merged 28 commits into from
May 24, 2023
Merged

build(deps): avoid version conflicts #636

merged 28 commits into from
May 24, 2023

Conversation

qued
Copy link
Contributor

@qued qued commented May 23, 2023
edited
Loading

Addresses #631.

  • Uses constraints to keep dependency versions more consistent.
  • Moves all dependencies to .in files which are then ingested by setup.py.
  • Adds script to check consistency of all extras.
  • Adds consistency check to CI.

I should note that while it shouldn't be possible to cause a conflict between base.txt and any of the extras (because base.txt constrains all the extras) it is possible to get a conflict between two of the extras files. There are ways of trying to avoid that (like constraining each file by all the files that have already been processed before it in the order given in the make pip-compile target) but the ones I could think of seemed a little overwrought, and come with problems of their own. If a conflict arises, it should be flagged by CI or locally with make check-deps. When/if that happens, you can resolve the conflict by adding appropriate global constraints in requirements/constraints.txt.

Also note that if fileA.in is constrained by fileB.txt, then fileB.in should be compiled before fileA.in in the make pip-compile target. Otherwise fileA.in will be compiled with the old version of fileB.txt which can cause conflicts or keep dependencies from being updated properly.

Testing:

  • Verify make check-deps says deps are consistent.
  • Change line 59 of requirements/ingest-s3.txt to:
urllib3==1.27.1
  • Verify make check-deps produces an error.

qued added 21 commits May 23, 2023 13:04
@qued
Add new requirements/constraints .in files
b9fc265
@qued
Use new files in make targets and setup
df955cc
@qued
Manifest to make sure files are available for install
cff4c69
@qued
Update all reqs according to the new rules
5f1fd53
@qued
Use full paths
7e8a256
@qued
Move all constraint-type pins to base-constraints
a450af8
@qued
Comment changes with re pip-compile
de9d386
@qued
Redo constraints
488d6dc
@qued
cache file should be noop as a requirements file
d605d29
@qued
update deps with constraints
bc93c3d
@qued
Correct makefile
1313679
@qued
Add consistency checking script
ce6d6c2
@qued
shellcheck updates
3c6254d
@qued
Add dependency check in ci
46293bd
@qued
Make target for deps
43abbc9
@qued
Suppress pip output in script
cd5d834
@qued
Update to give output andproper exit value
cb15628
@qued
Correct manifest
9b8bf34
@qued
Merge branch 'main' into build(deps)/avoid-version-conflicts
be7e8a5
@qued
shellcheck fix
8bf98fc
@qued
fix ruff error
3957973
@qued qued requested a review from cragwolfe May 23, 2023 23:51
@cragwolfe
Copy link
Contributor

Flagging @ryannikolaidis in case he is aware of any potential downstream issues with the urllib<2 pin. But, really great to see the dep issues sorted out and a way of preventing the mismatches in the future. Passing CI with Dockerfile is also promising 🤞 .

@qued qued marked this pull request as ready for review May 24, 2023 00:26
@ryannikolaidis
Copy link
Contributor

Flagging @ryannikolaidis in case he is aware of any potential downstream issues with the urllib<2 pin. But, really great to see the dep issues sorted out and a way of preventing the mismatches in the future. Passing CI with Dockerfile is also promising 🤞 .

Thanks! Nope, I don't think we had anything explicitly forcing our hand. iirc the main push to urllib3 was because the latest for a bunch of our dependencies were requiring urllib3>2. As long as we're okay with those not getting bumps, then I don't think there are any other immediate concerns.

Thanks for this @qued! 🙏

cragwolfe
cragwolfe approved these changes May 24, 2023
View reviewed changes
Copy link
Contributor

@cragwolfe cragwolfe left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM!

@qued qued enabled auto-merge (squash) May 24, 2023 22:28
@qued qued merged commit c82bad1 into main May 24, 2023
@qued qued deleted the build(deps)/avoid-version-conflicts branch May 24, 2023 22:29
@qued qued mentioned this pull request May 25, 2023
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@cragwolfe cragwolfe cragwolfe approved these changes

@ryannikolaidis ryannikolaidis Awaiting requested review from ryannikolaidis

@awalker4 awalker4 Awaiting requested review from awalker4

@amanda103 amanda103 Awaiting requested review from amanda103

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@qued @cragwolfe @ryannikolaidis