[dependencies] update 3rd party dependencies #407

apalala · 2021-09-08T15:31:07Z

Remove pins to very old versions that produce conflicts with other tools used alongside Scrapy (#404).

Remove requirements.in and rely on setup.py.install_requires.

Remove pip from dependencies as mentioning it is deemed unsafe.

Upgrade all libraries through pip-compile --upgrade.

Hopefully solve security warnings reported by dependabot.

This PR drops support for Python 2.7, 3.5, and 3.6.

fixes #406
fixes #412

.travis.yml

setup.py

shub/utils.py

.bumpversion.cfg

.github/workflows/python-app.yml

Gallaecio · 2021-09-09T06:46:35Z

.github/workflows/python-app.yml

+        # stop the build if there are Python syntax errors or undefined names
+        flake8 . --count --select=E9,F63,F7,F82 --show-source --statistics
+        # exit-zero treats all errors as warnings. The GitHub editor is 127 chars wide
+        flake8 . --count --exit-zero --max-complexity=10 --max-line-length=127 --statistics


Why not use tox instead of using flake8 directly, and keep this within the tox configuration so that running tox -e flake8 has the same effect, and users can run that locally?

Github Actions were an experiment. We don't need them now, so I'll remove them.

.travis.yml

setup.py

tests/test_utils.py

hugovk · 2021-09-16T15:56:03Z

Tip: add python_requires=">=3.6", to setup.py to help pip know which library version to install for end users.

.bumpversion.cfg

.travis.yml

requirements.txt

setup.py

Gallaecio · 2021-10-21T04:48:53Z

setup.py

-        'tqdm==4.55.1',
+        'tqdm',


We should probably keep some limit, assuming we do not support just any version.

setup.py

Gallaecio · 2021-10-21T04:50:10Z

tests/requirements.txt

+    # via pipenv

 # The following packages are considered to be unsafe in a requirements file:
 # pip


It probably makes sense to remove this file in favor of tox.ini.

We discussed this on Slack.

requirements.txt and requirements-test.txt serve to document the versions of the libraries that passed the tests when the branch was merged.

Gallaecio · 2021-10-21T04:50:49Z

tests/test_utils.py

                os.path.join(basepath, 'a', 'b'))


+@unittest.skip('broken by changes in `click.invoke(input=)`')


Then we should either address this in code or limit the upper version of click to a version we support in setup.py.

No. This test is complicated yet unimportant, so not enough reason to downgrade click.

Also, there should be only minor changes on this release.

I'll leave this comment open to remind us to search or post an issue against click.

…' into update_dependencies

apalala added 4 commits September 8, 2021 10:52

[setup.py] remove 'pip' from requires, unsafe

9225f3a

[dependencies] pip-compile --upgrade setup.py and tests/requirements.in

05ed6c1

[dependencies] pip compile --upgrade setup.py

25a5446

[dependencies] remove requirements.in as it duplicates setup.py

f4a9ffc

apalala added enhancement dependencies Pull requests that update a dependency file labels Sep 8, 2021

apalala self-assigned this Sep 8, 2021

apalala added 3 commits September 8, 2021 11:36

[dependencies] enable TravisCI on branch

450b73d

[cli][bug] fix incorrect parameter passed for click.prompt(default=)

402dcf4

[travisci] use Python 3.9 + apply to all branches

878a967

apalala requested a review from Gallaecio September 8, 2021 16:24

apalala added 2 commits September 8, 2021 12:41

[setup.py] unpin click

3dd95a7

[ci] add github pipeline/action for builds

9342d08

Gallaecio reviewed Sep 8, 2021

View reviewed changes

.travis.yml Outdated Show resolved Hide resolved

setup.py Outdated Show resolved Hide resolved

shub/utils.py Outdated Show resolved Hide resolved

apalala added the WIP label Sep 8, 2021

apalala added 13 commits September 8, 2021 13:29

[dependencies] pin click==7.1.2 for Python 2.7 support

4df40f0

[travisci] restore active branches

8df9044

[github] install other Python versions in action

81c3fc8

[github] bugfix in actions

d6577e5

[tox] drop py36

02489bf

[tox] drop py27

0f4558f

[github] try to install other Python versions

8e316dd

Bump version: 2.13.0 → 2.14.0

02bc076

update from incorrect commit in master

f4f98ba

Merge branch 'master' into update_dependencies

109ee19

[tests][cli] skip tests involving click.invoke(input=)

6e8caa9

[dependencies] unpin dependencies in setup.py

616cdd7

[setup.py] drop support for 2.7, 3.5, 3.6

8c4b490

Gallaecio reviewed Sep 9, 2021

View reviewed changes

[versioning] revert version changes

911cd58

apalala added 3 commits September 9, 2021 10:18

[ci] remove experimental Github Actions

db8f39a

[setup.py] revert version change + unpin requirements

abf7150

[versioning] restore version

7b83121

apalala added 5 commits October 20, 2021 16:42

[test] include py310

015be38

[requirements] update + force updated python-scrapinghub from branch

3213221

Bump version: 2.13.0 → 3.0.0

3811292

[setup.py] patch for branch version of python-scrapinghub

55e4131

[setup.py] revert latest change

d99ed0f

Gallaecio reviewed Oct 21, 2021

View reviewed changes

apalala added 15 commits October 23, 2021 10:21

[setup.py] pin click to >=7.0

227cc64

[tox] test on py310

b47afd0

Merge remote-tracking branch 'refs/remotes/origin/update_dependencies…

fc441d4

…' into update_dependencies

[test] clean up tox.ini

c586b58

[setup.py] fix syntax error

b3f158a

ignore PyCharm configuration dir .idea/

cddc023

[test] refactor requirments files for library version consistency

cdeaef0

[tests] resolve deprecation in pyyaml.yaml.load()

3c98c78

[test] resolve self.assertRaisesRegex deprecation

fddef8e

[utils] solve SafeconfigParser deprecation

99f5670

[requirements] use the branch version of python-scrapinghub

b28c03f

[make] requirements-test.txt depends on requirements-test.in

962ac7f

[tests] disable test_can_deploy_an_egg_from_pypi()

e1482ac

[requirements] force branch version of python-scrapinghub

22d0ad1

[tests] resolve deprecation warnings

90886f3

elacuesta mentioned this pull request Dec 6, 2021

Run CI on GitHub Actions #413

Merged

7 tasks

dogweather mentioned this pull request Feb 23, 2022

Dependencies improvements and shub public-law/open-gov-crawlers#50

Closed

		os.path.join(basepath, 'a', 'b'))


		@unittest.skip('broken by changes in `click.invoke(input=)`')

[dependencies] update 3rd party dependencies #407

Are you sure you want to change the base?

[dependencies] update 3rd party dependencies #407

Uh oh!

Conversation

apalala commented Sep 8, 2021 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Gallaecio Sep 9, 2021

Choose a reason for hiding this comment

Uh oh!

apalala Sep 9, 2021

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

hugovk commented Sep 16, 2021

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Gallaecio Oct 21, 2021

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Gallaecio Oct 21, 2021

Choose a reason for hiding this comment

Uh oh!

apalala Oct 25, 2021

Choose a reason for hiding this comment

Uh oh!

Gallaecio Oct 21, 2021

Choose a reason for hiding this comment

Uh oh!

apalala Oct 25, 2021

Choose a reason for hiding this comment

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants

apalala commented Sep 8, 2021 •

edited

Loading