Requirement version constraints are too strict #35
Comments
Remove version pinning: nxp-mcuxpresso/spsdk#35 Remove use of pypemicro: nxp-mcuxpresso/pypemicro#10 nxp-mcuxpresso/spsdk#30 Remove use of pyocd-pemicro: pyocd/pyOCD#1319 Remove use of libusbsio: nxp-mcuxpresso/spsdk#36 git-svn-id: file:///srv/repos/svn-community/svn@1133098 9fca08f4-af9d-4005-b8df-a31f2cc04f65
Remove version pinning: nxp-mcuxpresso/spsdk#35 Remove use of pypemicro: nxp-mcuxpresso/pypemicro#10 nxp-mcuxpresso/spsdk#30 Remove use of pyocd-pemicro: pyocd/pyOCD#1319 Remove use of libusbsio: nxp-mcuxpresso/spsdk#36 git-svn-id: file:///srv/repos/svn-community/svn@1133098 9fca08f4-af9d-4005-b8df-a31f2cc04f65
|
Some requirements version constraints might be relaxed, that's for sure. But that's not always possible. Some of our dependencies broke backward compatibility or introduce bugs themselves. Therefore there will always be upper bound restrictions. |
|
There are two conflicting goals:
The solution is here: https://caremad.io/posts/2013/07/setup-vs-requirement/ In short, we should remove the setup.py code that loads The hard part is to determine which or just a precautionary thing ("this version has worked for us and has been tested") It is not always clear - for example 29e7821 does not say what went broken? This way the release managers could be even more strict - simply Next steps:
Having said that, if bincopy 17.10 does not really work, it should be fixed (either in SPSDK if we use it incorrectly or upstream) and the current requirements.txt rule is correct and should be moved to setup.py if we go on with this proposal (until this is resolved). |
|
1.7.0 introduced a lot of strict |
|
Is anyone still addressing this? Otherwise I might as well just close this issue and just remove all the problematic version pinning manually. |
|
I rather not see this closed but resolved properly. As a package for another Linux distribution (Alpine Linux) this is an issue I care for and I would like a good upstream resolution rather than removing the pinning manually downstream forever. |
|
From version SPSDK1.9, the latest versions of our dependencies started being regularly tested and then subsequently updated in SPSDK. This will loose the upper boundaries and hopefully help you with integration of SPSDK to your projects. |
|
SPSDK version ranges are still too strict IMHO, on 2.1.0, I see: And it seems that relaxing makes the tests all pass. On 2.1.1, same for |
|
Hi @RaitoBezarius , Regarding the packages you mentioned, please see the actual release dates: SPSDK adapted latest versions of its dependent packages just few days before release of version v2.1.0. I actually believe that our dependences are loose enough. You can check the latest release(v2.2.0). Please let me know if it satisfied your request. |
Hi! When trying to package this project for Arch Linux I will have to remove a lot of overly strict version restrictions in the requirement files.
E.g. requirements.txt is read in setup.py which leads to these requirements becoming hard runtime boundaries.
This is very problematic in a packaging context, as we can not guard against upgrades to these dependencies in a rolling release distribution (but that is what unit tests of the respective dependents are for and are run for in a packaging context) and we can also not pin them, as we do not provide python packages in a venv. In this context version pinning (
==) and upper boundaries (<or<=) that do not reflect what this project is actually compatible with and could be tested against (e.g. in CI) are very problematic (this is btw. also problematic for users not using this project in a venv, as they will have conflicting versions of the given dependencies installed eventually).Please make these version requirements less strict and ideally continuously test this project in CI against higher versions of all dependencies, so that breakage is easily mitigated while still being able to have very loose upper boundaries.
The text was updated successfully, but these errors were encountered: