Skip to content
GitLab
Projects Groups Snippets
  • /
  • Help
    • Help
    • Support
    • Community forum
    • Submit feedback
  • Sign in / Register
  • C cli
  • Project information
    • Project information
    • Activity
    • Labels
    • Members
  • Repository
    • Repository
    • Files
    • Commits
    • Branches
    • Tags
    • Contributors
    • Graph
    • Compare
    • Locked Files
  • Issues 4
    • Issues 4
    • List
    • Boards
    • Service Desk
    • Milestones
    • Iterations
    • Requirements
  • Merge requests 0
    • Merge requests 0
  • CI/CD
    • CI/CD
    • Pipelines
    • Jobs
    • Schedules
    • Test Cases
  • Deployments
    • Deployments
    • Environments
    • Releases
  • Packages and registries
    • Packages and registries
    • Package Registry
    • Container Registry
    • Infrastructure Registry
  • Monitor
    • Monitor
    • Incidents
  • Analytics
    • Analytics
    • Value stream
    • CI/CD
    • Code review
    • Insights
    • Issue
    • Repository
  • Wiki
    • Wiki
  • Snippets
    • Snippets
  • Activity
  • Graph
  • Create a new issue
  • Jobs
  • Commits
  • Issue Boards
Collapse sidebar
  • funkwhalefunkwhale
  • cli
  • Merge requests
  • !16

Clean up and pin dependencies

  • Review changes

  • Download
  • Email patches
  • Plain diff
Merged EorlBruder requested to merge EorlBruder/cli:fix-9 into master Jun 20, 2021
  • Overview 16
  • Commits 6
  • Pipelines 2
  • Changes 5

This MR is regarding #9 (closed).

Changes

  • Removed the requirements.txt, thus we only have one way of tracking dependencies (the setup.cfg)
  • Adjusted the metadata in setup.cfg. This would mean a transfer from @agate to the collective.
  • split up the extra_requires into dev, build and test
  • I pinned the dependencies to the ones which pip auto-pulled for me

Open questions

  • Is the transfer of the authorship desired in this case?
  • I was a bit unsure about which e-mail-address to use in the metadata, for now I used the one from https://dev.funkwhale.audio/funkwhale/mopidy/-/blob/master/setup.cfg
  • I'm a little bit conflicted about pinning the dependencies to those specific versions. On one hand it means we know the environment in which each version of the tool will run, thus making debugging easier. On the other hand it means we should continually update, to not miss critical updates. I can imagine something like https://gitlab.com/dependabot-gitlab/dependabot could help out here?
  • What is the best practice regarding which version to pin and how to pin it? Like I mentioned in this case I just used the ones which pip pulled for me - but should maybe rather pull more "major" versions and use "~=" for minor versions?
  • In the classifiers-section Python 3.6 is specifically mentioned. Should this be bumped up to a newer version too?
  • In the cli.spec, there's a line referencing a specfic home-directory. I feel like this should be more generic, though I have no idea what exactly happens in that file and also nothing seems to be breaking atm. (I marked that one with a TODO).
Edited Jun 25, 2021 by Georg Krause
Assignee
Assign to
Reviewers
Request review from
Time tracking
Source branch: fix-9