adapt code to new spdx-tools release #3173
Conversation
There was a problem hiding this comment.
Here are two more locations that probably need to be adapted:
https://github.com/nexB/scancode-toolkit/blob/8f07fdfb678aaed6e8eef940f6c0241e53f5614a/setup.cfg#L107
https://github.com/nexB/scancode-toolkit/blob/8f07fdfb678aaed6e8eef940f6c0241e53f5614a/setup-mini.cfg#L106
|
@meretp @nicoweidner I pushed spdx-tools 0.7.0rc0 so you should be able to update your PR accordingly. |
meretp
force-pushed
the
python_tools_release
branch
2 times, most recently
from
50a1233
to
0efa0ff
Compare
|
@pombredanne I updated the PR accordingly and all tests pass now, so this is ready for review. |
|
I updated the |
|
@pombredanne Gentle ping, is there anything else I can do to get this PR merged? |
We are all good and this is being merged today |
There was a problem hiding this comment.
@meretp Thanks! see some review nitpickings for your consideration.
setup-mini.cfg
Outdated
| @@ -103,7 +103,7 @@ install_requires = | |||
| pymaven_patch >= 0.2.8 | |||
| requests >= 2.7.0 | |||
| saneyaml >= 0.5.2 | |||
| spdx_tools == 0.7.0a3 | |||
| spdx_tools >= 0.7.0rc0, ==0.7.* | |||
There was a problem hiding this comment.
We avoid using upper cap in setup requirements. We pin instead in requirements files.
| spdx_tools >= 0.7.0rc0, ==0.7.* | |
| spdx_tools >= 0.7.0rc0 |
See https://iscinumpy.dev/post/bound-version-constraints/ and https://caremad.io/posts/2013/07/setup-vs-requirement/ for detailed articles on the topics. ScanCode is both used as an app and as a library. App deps are pinned, library deps are not capped.
There was a problem hiding this comment.
Since there is currently a big refactoring in the progress, which is breaking the API after 0.7, we think that it is safer to restrict it here. Otherwise we will run into the same race condition with releasing.
Pinning in requirement files was not sufficient to mitigate the breaking changes between 0.7.0a3 and 0.7.0rc0.
With the new release, the checksum class has been renamed, the license class has been moved to its own file, and files are now only allowed at document level. Signed-off-by: Meret Behrens <[email protected]>
Signed-off-by: Meret Behrens <[email protected]>
Signed-off-by: Meret Behrens <[email protected]>
meretp
force-pushed
the
python_tools_release
branch
from
0a1774e
to
5c7c4a8
Compare
|
@pombredanne I included your suggested changes in a fix-up commit to squash this before merging. Two tests fail but that seems to be another issue as the latest commit on develop also has these failing tests. |
No worries, we will be fine now! |
Signed-off-by: Philippe Ombredanne <[email protected]>
pombredanne
force-pushed
the
python_tools_release
branch
from
b51387d
to
4677510
Compare
With the new release, the checksum class has been renamed, the license class has been moved to its own file, and files are now only allowed at document level.
Signed-off-by: Meret Behrens [email protected]
Fixes #3172
Tasks
Run tests locally to check for errors.