Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

pythonPackages.(datasette, mergedeep, asgi-csrf, starlette, httpx, httpcore): upgrades & new additions #96565

Merged
merged 6 commits into from Sep 2, 2020
Merged

pythonPackages.(datasette, mergedeep, asgi-csrf, starlette, httpx, httpcore): upgrades & new additions #96565

merged 6 commits into from Sep 2, 2020

Conversation

risicle
Copy link
Contributor

@risicle risicle commented Aug 28, 2020

Motivation for this change

This started with me upgrading datasette from 0.39 -> 0.46, in an attempt to mitigate GHSA-q6j3-c4wc-63vw.

This required the addition of mergedeep and asgi-csrf.

The addition of asgi-csrf required a bump of starlette and httpx to get the tests to pass.

The bump of httpx required the addition of httpcore.

It's been a fun few evenings.

In the bumped packages I also performed a few cleanups, looking for no-longer-necessary dependencies, removing outdated comments etc.

Things done
  • Tested using sandboxing (nix.useSandbox on NixOS, or option sandbox in nix.conf on non-NixOS linux)
  • Built on platform(s)
    • NixOS
    • macOS
    • other Linux distributions
  • Tested via one or more NixOS test(s) if existing and applicable for the change (look inside nixos/tests)
  • Tested compilation of all pkgs that depend on this change using nix-shell -p nixpkgs-review --run "nixpkgs-review wip"
  • Tested execution of all binary files (usually in ./result/bin/)
  • Determined the impact on package closure size (by running nix path-info -S before and after)
  • Ensured that relevant documentation is up to date
  • Fits CONTRIBUTING.md.

@risicle risicle requested a review from costrouc August 28, 2020 20:28
@risicle
Copy link
Contributor Author

risicle commented Aug 28, 2020

@ofborg build python37Packages.datasette python37Packages.fastapi google-music-scripts

@ofborg ofborg bot requested a review from wd15 August 28, 2020 21:13
@risicle
Copy link
Contributor Author

risicle commented Aug 31, 2020

Hmm is the aarch64 failure just python38Packages.websockets being broken...?

@wd15
Copy link
Contributor

wd15 commented Aug 31, 2020

Builds for me.

@jonringer
Copy link
Contributor

sorry, I sorted python-packages, please rebase

@ofborg ofborg bot requested a review from wd15 August 31, 2020 19:56
jonringer
jonringer reviewed Sep 1, 2020
View reviewed changes
pkgs/top-level/python-packages.nix Outdated Show resolved Hide resolved
pkgs/top-level/python-packages.nix Outdated Show resolved Hide resolved
@ofborg ofborg bot requested a review from wd15 September 2, 2020 21:54
jonringer
jonringer approved these changes Sep 2, 2020
View reviewed changes
Copy link
Contributor

@jonringer jonringer left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

diff LGTM

https://github.com/NixOS/nixpkgs/pull/96565
17 packages built:
datasette google-music-scripts python37Packages.asgi-csrf python37Packages.datasette python37Packages.fastapi python37Packages.google-music python37Packages.httpcore python37Packages.httpx python37Packages.mergedeep python37Packages.starlette python38Packages.asgi-csrf python38Packages.fastapi python38Packages.google-music python38Packages.httpcore python38Packages.httpx python38Packages.mergedeep python38Packages.starlette

@jonringer jonringer merged commit f1b9dcd into NixOS:master Sep 2, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jonringer jonringer jonringer approved these changes

@costrouc costrouc Awaiting requested review from costrouc

@FRidh FRidh Awaiting requested review from FRidh

@wd15 wd15 Awaiting requested review from wd15

Assignees
No one assigned
Labels
6.topic: python 8.has: package (new) 10.rebuild-darwin: 11-100 10.rebuild-linux: 11-100
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@risicle @wd15 @jonringer