Update the tilde version specifier warning to include more context#14335
Update the tilde version specifier warning to include more context#14335
Conversation
| if let Some((lo_b, hi_b)) = release_specifier_to_range(spec.clone()) | ||
| .bounding_range() | ||
| .map(|(l, u)| (l.cloned(), u.cloned())) | ||
| { | ||
| let lo_spec = LowerBound::new(lo_b).specifier().unwrap(); | ||
| let hi_spec = UpperBound::new(hi_b).specifier().unwrap(); |
There was a problem hiding this comment.
I found this hard to follow and there's a lot of indirection that can be avoided for the case we care about.
|
cc @aaron-ang — curious if you have any thoughts here |
I was trying to reuse as much code as possible., but your implementation is definitely much cleaner! |
|
I think this warning added in #14008 is quite confusing and @zanieb maybe you can fix it here? First if all it is very unclear what version it relates to - especially when you have a workspace. I looked at it and it really makes no sense So I thought (creatively) it is about something else - namly Or maybe it's simply a but in the logic? Or maybe I completely missed something ? (could be ... I was staring at the numbers for a while). |
|
Thanks for the feedback! I'll take a deeper look, but briefly... the intent is to warn on |
Interesting - I never had that impression to be honest
Well, Yeah. Actually I *would prefer to be able to still say Is there a way to silence it ? |
|
And BTW. Regardless from the result of the discussion - at the very least - the message should explain what the problem is and how to solve it :) |
|
We have a couple comments, e.g.:
Part of the problem is that the I'll certainly be considering reducing the visibility of the warning, but we'd need to hear more feedback that it's doing more harm than good. |
|
I'm also updating the error message to be more informative |
| /// or `~=3.13.0`. | ||
| #[derive(Clone, Debug)] | ||
| pub struct TildeVersionSpecifier<'a> { | ||
| inner: Cow<'a, VersionSpecifier>, |
There was a problem hiding this comment.
Alas I wrote this as using a borrowed version specifier then wanted to use bounding_specifiers alongside a with_patch utility to improve error messages and needed the ability to own the specifier. It's not a big deal, but that's why it is this way.
There was a problem hiding this comment.
imo we can just always clone those outside the resolver, it's not worth the complexity
There was a problem hiding this comment.
The annoying part is that I didn't want to take an owned value for the None case and didn't want to hide a clone. I think if I knew I'd need an owned value later I would have just done it anyway, but I don't expect it to be a big deal to maintain now that it's there.
| ) -> Option<Self> { | ||
| // Convert to PubGrub range and perform an intersection. | ||
| let range = specifiers | ||
| .map(|specs| { |
There was a problem hiding this comment.
This moved up a level, where was have access to the project and group names the specifiers come from
Yep. I understand the potential ambiguity, and that some people might get confused when they are writing their own specification and that's fine and warning by default is good. This is good for people who switch between ecosystems for sure and for newcomers. So I am perfectly fine with having a warning with more explanation in this case by default (and pointing to the right place where it happens). But also I think you have to consider the ripple effect it might have for "seasoned" people - who will suddenly get the warning in their projects, and the only option they have is to change their specification (which might go well into many thousands workflows - It would be worth doing some checks on Github/PyPi to see how many packages already specify ~X.Y and my educated guess will be A LOT. So I think a good solution would be to allow - by uv configuration in pyproject.toml file (ideally in the workspace one) to silence the warning - AKA "We know what we are doing". That would be way easier to handle by the "seasoned" maintainers (especially if the warning message will hint at the possibilty of disabling it for those who know what they do) - rather than trying to "force ambiguity correction on all maintainers" :). Souds a bit "harsh" - especially that it will affect contributors. If some maintainers do not use uv for development environment, and some of their contributors will - this will cause a tension, because uv users will have warning where non-uv users will not and maintainers will be "pressured" to change their specifications if if they know what they do and chose it consciously. |
|
I personally don't think the difference in behaviuor across ecosystems is a factor here -- we are dealing with Python dependency specifiers so people need to know how Python ecosystem behaves here, which to me should follow the behaviour set out in the PyPA-maintained Version Specifiers - § Compatible release
|
| /// or `~=3.13.0`. | ||
| #[derive(Clone, Debug)] | ||
| pub struct TildeVersionSpecifier<'a> { | ||
| inner: Cow<'a, VersionSpecifier>, |
There was a problem hiding this comment.
imo we can just always clone those outside the resolver, it's not worth the complexity
This MR contains the following updates: | Package | Update | Change | |---|---|---| | [astral-sh/uv](https://github.com/astral-sh/uv) | patch | `0.7.16` -> `0.7.19` | MR created with the help of [el-capitano/tools/renovate-bot](https://gitlab.com/el-capitano/tools/renovate-bot). **Proposed changes to behavior should be submitted there as MRs.** --- ### Release Notes <details> <summary>astral-sh/uv (astral-sh/uv)</summary> ### [`v0.7.19`](https://github.com/astral-sh/uv/blob/HEAD/CHANGELOG.md#0719) [Compare Source](astral-sh/uv@0.7.18...0.7.19) The **[uv build backend](https://docs.astral.sh/uv/concepts/build-backend/) is now stable**, and considered ready for production use. The uv build backend is a great choice for pure Python projects. It has reasonable defaults, with the goal of requiring zero configuration for most users, but provides flexible configuration to accommodate most Python project structures. It integrates tightly with uv, to improve messaging and user experience. It validates project metadata and structures, preventing common mistakes. And, finally, it's very fast — `uv sync` on a new project (from `uv init`) is 10-30x faster than with other build backends. To use uv as a build backend in an existing project, add `uv_build` to the `[build-system]` section in your `pyproject.toml`: ```toml [build-system] requires = ["uv_build>=0.7.19,<0.8.0"] build-backend = "uv_build" ``` In a future release, it will replace `hatchling` as the default in `uv init`. As before, uv will remain compatible with all standards-compliant build backends. ##### Python - Add PGO distributions of Python for aarch64 Linux, which are more optimized for better performance See the [python-build-standalone release](https://github.com/astral-sh/python-build-standalone/releases/tag/20250702) for more details. ##### Enhancements - Ignore Python patch version for `--universal` pip compile ([#​14405](astral-sh/uv#14405)) - Update the tilde version specifier warning to include more context ([#​14335](astral-sh/uv#14335)) - Clarify behavior and hint on tool install when no executables are available ([#​14423](astral-sh/uv#14423)) ##### Bug fixes - Make project and interpreter lock acquisition non-fatal ([#​14404](astral-sh/uv#14404)) - Includes `sys.prefix` in cached environment keys to avoid `--with` collisions across projects ([#​14403](astral-sh/uv#14403)) ##### Documentation - Add a migration guide from pip to uv projects ([#​12382](astral-sh/uv#12382)) ### [`v0.7.18`](https://github.com/astral-sh/uv/blob/HEAD/CHANGELOG.md#0718) [Compare Source](astral-sh/uv@0.7.17...0.7.18) ##### Python - Added arm64 Windows Python 3.11, 3.12, 3.13, and 3.14 These are not downloaded by default, since x86-64 Python has broader ecosystem support on Windows. However, they can be requested with `cpython-<version>-windows-aarch64`. See the [python-build-standalone release](https://github.com/astral-sh/python-build-standalone/releases/tag/20250630) for more details. ##### Enhancements - Keep track of retries in `ManagedPythonDownload::fetch_with_retry` ([#​14378](astral-sh/uv#14378)) - Reuse build (virtual) environments across resolution and installation ([#​14338](astral-sh/uv#14338)) - Improve trace message for cached Python interpreter query ([#​14328](astral-sh/uv#14328)) - Use parsed URLs for conflicting URL error message ([#​14380](astral-sh/uv#14380)) ##### Preview features - Ignore invalid build backend settings when not building ([#​14372](astral-sh/uv#14372)) ##### Bug fixes - Fix equals-star and tilde-equals with `python_version` and `python_full_version` ([#​14271](astral-sh/uv#14271)) - Include the canonical path in the interpreter query cache key ([#​14331](astral-sh/uv#14331)) - Only drop build directories on program exit ([#​14304](astral-sh/uv#14304)) - Error instead of panic on conflict between global and subcommand flags ([#​14368](astral-sh/uv#14368)) - Consistently normalize trailing slashes on URLs with no path segments ([#​14349](astral-sh/uv#14349)) ##### Documentation - Add instructions for publishing to JFrog's Artifactory ([#​14253](astral-sh/uv#14253)) - Edits to the build backend documentation ([#​14376](astral-sh/uv#14376)) ### [`v0.7.17`](https://github.com/astral-sh/uv/blob/HEAD/CHANGELOG.md#0717) [Compare Source](astral-sh/uv@0.7.16...0.7.17) ##### Bug fixes - Apply build constraints when resolving `--with` dependencies ([#​14340](astral-sh/uv#14340)) - Drop trailing slashes when converting index URL from URL ([#​14346](astral-sh/uv#14346)) - Ignore `UV_PYTHON_CACHE_DIR` when empty ([#​14336](astral-sh/uv#14336)) - Fix error message ordering for `pyvenv.cfg` version conflict ([#​14329](astral-sh/uv#14329)) </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever MR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this MR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this MR, check this box --- This MR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MC42Mi4xIiwidXBkYXRlZEluVmVyIjoiNDAuNjIuMSIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOlsiUmVub3ZhdGUgQm90Il19-->

Follows #14008