Feature/pep517 release #226
Conversation
|
This change also fixes #214. |
| secure: RAfz06AINvz7bfij/YhfkAreRqamgxS8a6jSRNxntYhtJke3ZszUbIDag8+n1I+G5XT2LnMhHqPNR7Plc+AeMz7VXTuy+b81Li5kse20NYlPhd7mBVmTUpXtqYQashV5J39F4qkATBLznCOrMEomM07VTXjO/o2hmQuXniab2Uo= | ||
| distributions: dists | ||
| skip_cleanup: true | ||
| install: |
There was a problem hiding this comment.
This is not needed, just add tox-venv to tox.ini and set
| install: | |
| env: | |
| TOXENV: release |
There was a problem hiding this comment.
I'm not sure I want to invoke tox -m tox --notest or *python_ssl_openssl_version or python -m OpenSSL.debug during install, which is why I chose to override it.
Also, I'm not sure about adding tox-venv to tox.ini. There may be bootstrapping issues. If tox needs a later version or needs to install tox-venv, then it will create a .tox/.tox env in which to install those packages. If tox-venv isn't already installed (or is), that may affect how .tox/.tox is created. The only technique I trust is to install tox-venv alongside tox prior to invoking .tox. I'm open to experimenting with other techniques, but I don't want to adopt those risks as part of this change.
There was a problem hiding this comment.
Okay, so let's change this to installing tox-venv and invoking tox with --notest because --notest allows us to clearly separate envs bootstrap (hence the install step) from actually running main commands (script).
Using env allows us to unify interactions with tox across the config file.
There was a problem hiding this comment.
Oh, I see. By running --notest, you get bootstrapping of the environment(s) before running their commands. That's interesting and does make sense. I'm reluctant to add complication, but I can see the benefit there. Let's explore that after validating this simpler approach.
There was a problem hiding this comment.
Oh, this discussion got distributed over comments... #226 (comment)
.travis.yml
Outdated
| skip_cleanup: true | ||
| install: | ||
| - python -m pip install tox tox-venv | ||
| script: |
There was a problem hiding this comment.
Done in 31150f6. I'm slightly reluctant to use an environment variable for a one-off where a command-line switch will do, as the latter provides a nice example for a user as to what to do to release, whereas setting an environment variable for the duration of a command is harder and varies by environments (shell, OS, etc).
| TWINE_USERNAME = {env:TWINE_USERNAME:__token__} | ||
| commands = | ||
| python -c "import path; path.Path('dist').rmtree_p()" | ||
| python -m pep517.build . |
There was a problem hiding this comment.
I usually prefer having separate build and publish envs. Then we'd do smth like TOXENV=build-dists,setup-check,release.
There was a problem hiding this comment.
Three steps for one artifact? I dunno. That sounds overly complicated. Then you'd have to ensure that the artifacts from each invocation are shared across the three steps... and a manual release would then require the same steps (or at least the build/release steps). I can imagine a few scenarios where it might be useful to have separate steps, but 99% of the use-cases are going to be to invoke the suite of commands, so I'd prefer to keep it simple. And in that 1% of the cases where it's necessary to separate the concerns, one could use tox --notest and run the commands incrementally. Why not just keep it simple and concise?
There was a problem hiding this comment.
I think it does too much. I often want a command that gives me dists what I can then inspect with other tools. How about something like this https://github.com/pypa/twine/blob/5cb1867/tox.ini#L53-L61 then?
There was a problem hiding this comment.
Also, ideally in the future, I'd like to try out a better testing strategy: first build the artifacts, then pip-install from there and completely avoid lib imports from the repo.
There was a problem hiding this comment.
I'd like to try out a better testing strategy
Yes, maybe. I'm heavily invested in the test-at-source methodology because it's faster. It's one of the reasons I prefer Python to (your language here). I do acknowledge there's weakness in testing against the source instead of the built artifact... but my instinct there would be to provide additional testing for the build artifact rather than encumber the development process with two sources of truth (source and installed code).
There was a problem hiding this comment.
Yeah, I think that for the development purposes it's more comfortable to rely on editable installs. And yes, I do agree that we need more artifact testing in CI than locally. I've been meaning to implement this for a while.
Here's a nice article that Paul published this topic last month: https://blog.ganssle.io/articles/2019/08/test-as-installed.html
|
Now that I released https://github.com/marketplace/actions/pypi-publish, I'd want to start using it. But this would not wait on Travis CI out of the box (yet doable) so I'd probably set a "manual" trigger which would be either a "Release" button on the Checks page (I have a working app for that) or publishing a release @ https://github.com/cherrypy/cheroot/releases/new. |
Codecov Report
@@ Coverage Diff @@
## master #226 +/- ##
==========================================
+ Coverage 74.51% 74.98% +0.46%
==========================================
Files 23 23
Lines 3634 3634
==========================================
+ Hits 2708 2725 +17
+ Misses 926 909 -17 |
| distributions: dists | ||
| skip_cleanup: true | ||
| install: | ||
| - python -m pip install tox tox-venv |
There was a problem hiding this comment.
| - python -m pip install tox tox-venv | |
| - python -m pip install tox tox-venv | |
| - python -m tox --notest |
There was a problem hiding this comment.
Thanks but no thanks. I'm not going to add a command and complication when the default process does the same thing. Better to rely on tox to do what it does best, rather than try to micro-manage it. This change seems counter to best-practices... and I can hardly imagine the benefit.
There was a problem hiding this comment.
I consider it best practice. Seen it used in a lot of places. tox itself uses --notest as it was designed for such separation: https://github.com/tox-dev/azure-pipelines-template/blob/master/run-tox-env.yml#L118
All fine and good. I'm happy to adopt any low-friction workflow you'd like to implement... but it needs to work and have low-friction fallbacks when the automated process fails. Some features of the release flows in the projects I support:
I want this project to have similar characteristics. |
|
I'm testing this technique out now with the 7.0 release. |
|
Yeah, that could be done. GitHub has a |
β What kind of change does this PR introduce?
β What is the current behavior? (You can also link to an open issue here)
The release process is embedded in a Travis config, so it's difficult to run manually.
β What is the new behavior (if this is a feature change)?
In addition to providing for a manual release process (for when the automated process is failing, such as it is now), this technique leverages pep517 to build the package, supporting isolated builds and best practices for packaging.
π Other information:
π Checklist:
and description in grammatically correct, complete sentences
This change isβ