PyPI - bump-dependencies - Versions diffs - 0.1.0__tar.gz - Mend

bump-dependencies 0.1.0__tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (13) hide show

bump_dependencies-0.1.0/LICENSE ADDED Viewed

@@ -0,0 +1,21 @@
+MIT License
+Copyright (c) 2025 Corey Goldberg
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

bump_dependencies-0.1.0/PKG-INFO ADDED Viewed

@@ -0,0 +1,165 @@
+Metadata-Version: 2.4
+Name: bump-dependencies
+Version: 0.1.0
+Summary: Bump Python package dependencies in pyproject.toml
+Author: Corey Goldberg
+Maintainer: Corey Goldberg
+License-Expression: MIT
+Project-URL: homepage, https://github.com/cgoldberg/bump-dependencies
+Project-URL: source, https://github.com/cgoldberg/bump-dependencies
+Project-URL: download, https://pypi.org/project/bump-dependencies
+Keywords: package,dependencies,requirements,bump,upgrade
+Classifier: Environment :: Console
+Classifier: Intended Audience :: Developers
+Classifier: Programming Language :: Python
+Classifier: Programming Language :: Python :: 3
+Classifier: Programming Language :: Python :: 3.9
+Classifier: Programming Language :: Python :: 3.10
+Classifier: Programming Language :: Python :: 3.11
+Classifier: Programming Language :: Python :: 3.12
+Classifier: Programming Language :: Python :: 3.13
+Requires-Python: >=3.9
+Description-Content-Type: text/markdown
+License-File: LICENSE
+Requires-Dist: packaging==25.0
+Requires-Dist: requests==2.32.4
+Requires-Dist: rich==14.0.0
+Requires-Dist: tomlkit==0.13.3
+Requires-Dist: validate-pyproject==0.24.1
+Dynamic: license-file
+# bump-dependencies
+## Python - bump your package dependencies
+*Update dependency specifiers in `pyproject.toml` to latest versions*
+---
+- Copyright (c) 2025 [Corey Goldberg][github-home]
+- Development: [GitHub][github-repo]
+- Download/Install: [PyPI][pypi-bump-dependencies]
+- License: [MIT][mit-license]
+----
+## Installation:
+Install from [PyPI][pypi-bump-dependencies]:
+```
+pip install bump-dependencies
+```
+----
+## Usage:
+```
+usage: bump_dependencies [-h] [--dry-run] [--path PATH]
+options:
+  -h, --help   show this help message and exit
+  --dry-run    don't write changes to pyproject.toml
+  --path PATH  path to pyproject.toml (defaults to current directory)
+```
+## About:
+`bump_dependencies` is a Python CLI program that generates a new packaging
+configuration file (`pyproject.toml`) file with updated package dependencies.
+- for more information on declaring dependencies in a configuration file, see the [PyPA pyproject.toml Spec][pypa-pyproject-dependencies]
+- for more information on version specifiers, see [PEP 440][pep-440] and the [PyPA Version Specifiers Spec][pypa-version-specifiers]
+- for more information on dependency specifiers, see [PEP 508][pep-508] and the [PyPA Dependency Specifiers Spec][pypa-dependency-specifiers]
+- for more information on dependency groups, see [PEP 735][pep-735] and the [PyPA Dependency Groups Spec][pypa-dependency-groups]
+#### Example:
+If your `pyproject.toml` contains this:
+```
+[project]
+... some metadata ...
+dependencies = ["matplotlib~=3.9", "requests==2.29.0"]
+[project.optional-dependencies]
+socks = ["PySocks>=1.5.6"]
+[dependency-groups]
+dev = ["black==23.9.1", "ruff==0.9.5"]
+test = ["pytest>8", "pytest-mock>=3.11"]
+```
+It will update dependency specifiers to the latest versions available on [PyPI][pypi-home]:
+```
+[project]
+... some metadata ...
+dependencies = ["matplotlib~=3.10.3", "requests==2.32.4"]
+[project.optional-dependencies]
+socks = ["PySocks>=1.7.1"]
+[dependency-groups]
+dev = ["black==25.1.0", "ruff==0.12.1"]
+test = ["pytest>8.4.1", "pytest-mock>=3.14.1"]
+```
+#### Which sections of `pyproject.toml` will be updated?
+It will update dependency specifiers listed in various sections of `pyproject.toml`:
+- `dependencies` list from `[project]` section
+- dependency lists from `[project.optional-dependencies]` section
+- dependency lists from `[dependency-groups]` section
+#### Which dependency specifiers will be updated?
+- will only update dependency specifiers with version identifier
+  containing comparison operator: `==`, `===`, `~=`, `>`, `>=`
+  - example:
+    - `foo==1.0.0`
+    - `foo~=1.0`
+    - `foo>=1`
+- will not update dependency specifiers with version identifier
+  containing comparison operator: `<`, `<=`, `!=`
+  - example:
+    - `foo<2.0`
+    - `foo>=1,<2`
+    - `foo > 1.0, != 1.0.1`
+- will not update unversioned dependency specifiers
+  - example:
+    - `foo`
+    - `foo[bar]`
+- will not update direct reference dependency specifiers
+  - example:
+    - `foo @ https://github.com/foo/foo/archive/1.0.0.zip`
+    - `foo @ file:///builds/foo-1.0.0-py3-none-any.whl`
+#### Supported comparison operators in version identifiers:
+- `==` : version matching
+- `===` : arbitrary equality
+- `~=` : compatible release
+- `>` : exclusive ordered comparison
+- `>=` : inclusive ordered comparison
+#### Unsupported comparison operators in version identifiers:
+- `<` : exclusive ordered comparison
+- `<=` : inclusive ordered comparison
+- `!=` : version exclusion
+[github-home]: https://github.com/cgoldberg
+[github-repo]: https://github.com/cgoldberg/bump-dependencies
+[pypi-home]: https://pypi.org
+[pypi-bump-dependencies]: https://pypi.org/project/bump-dependencies
+[mit-license]: https://raw.githubusercontent.com/cgoldberg/bump-dependencies/refs/heads/master/LICENSE
+[pep-440]: https://peps.python.org/pep-0440
+[pep-508]: https://peps.python.org/pep-0508
+[pep-735]: https://peps.python.org/pep-0735
+[pypa-version-specifiers]: https://packaging.python.org/en/latest/specifications/version-specifiers
+[pypa-dependency-specifiers]: https://packaging.python.org/en/latest/specifications/dependency-specifiers
+[pypa-dependency-groups]: https://packaging.python.org/en/latest/specifications/dependency-groups
+[pypa-pyproject-dependencies]: https://packaging.python.org/en/latest/specifications/pyproject-toml/#dependencies-optional-dependencies

bump_dependencies-0.1.0/README.md ADDED Viewed

@@ -0,0 +1,135 @@
+# bump-dependencies
+## Python - bump your package dependencies
+*Update dependency specifiers in `pyproject.toml` to latest versions*
+---
+- Copyright (c) 2025 [Corey Goldberg][github-home]
+- Development: [GitHub][github-repo]
+- Download/Install: [PyPI][pypi-bump-dependencies]
+- License: [MIT][mit-license]
+----
+## Installation:
+Install from [PyPI][pypi-bump-dependencies]:
+```
+pip install bump-dependencies
+```
+----
+## Usage:
+```
+usage: bump_dependencies [-h] [--dry-run] [--path PATH]
+options:
+  -h, --help   show this help message and exit
+  --dry-run    don't write changes to pyproject.toml
+  --path PATH  path to pyproject.toml (defaults to current directory)
+```
+## About:
+`bump_dependencies` is a Python CLI program that generates a new packaging
+configuration file (`pyproject.toml`) file with updated package dependencies.
+- for more information on declaring dependencies in a configuration file, see the [PyPA pyproject.toml Spec][pypa-pyproject-dependencies]
+- for more information on version specifiers, see [PEP 440][pep-440] and the [PyPA Version Specifiers Spec][pypa-version-specifiers]
+- for more information on dependency specifiers, see [PEP 508][pep-508] and the [PyPA Dependency Specifiers Spec][pypa-dependency-specifiers]
+- for more information on dependency groups, see [PEP 735][pep-735] and the [PyPA Dependency Groups Spec][pypa-dependency-groups]
+#### Example:
+If your `pyproject.toml` contains this:
+```
+[project]
+... some metadata ...
+dependencies = ["matplotlib~=3.9", "requests==2.29.0"]
+[project.optional-dependencies]
+socks = ["PySocks>=1.5.6"]
+[dependency-groups]
+dev = ["black==23.9.1", "ruff==0.9.5"]
+test = ["pytest>8", "pytest-mock>=3.11"]
+```
+It will update dependency specifiers to the latest versions available on [PyPI][pypi-home]:
+```
+[project]
+... some metadata ...
+dependencies = ["matplotlib~=3.10.3", "requests==2.32.4"]
+[project.optional-dependencies]
+socks = ["PySocks>=1.7.1"]
+[dependency-groups]
+dev = ["black==25.1.0", "ruff==0.12.1"]
+test = ["pytest>8.4.1", "pytest-mock>=3.14.1"]
+```
+#### Which sections of `pyproject.toml` will be updated?
+It will update dependency specifiers listed in various sections of `pyproject.toml`:
+- `dependencies` list from `[project]` section
+- dependency lists from `[project.optional-dependencies]` section
+- dependency lists from `[dependency-groups]` section
+#### Which dependency specifiers will be updated?
+- will only update dependency specifiers with version identifier
+  containing comparison operator: `==`, `===`, `~=`, `>`, `>=`
+  - example:
+    - `foo==1.0.0`
+    - `foo~=1.0`
+    - `foo>=1`
+- will not update dependency specifiers with version identifier
+  containing comparison operator: `<`, `<=`, `!=`
+  - example:
+    - `foo<2.0`
+    - `foo>=1,<2`
+    - `foo > 1.0, != 1.0.1`
+- will not update unversioned dependency specifiers
+  - example:
+    - `foo`
+    - `foo[bar]`
+- will not update direct reference dependency specifiers
+  - example:
+    - `foo @ https://github.com/foo/foo/archive/1.0.0.zip`
+    - `foo @ file:///builds/foo-1.0.0-py3-none-any.whl`
+#### Supported comparison operators in version identifiers:
+- `==` : version matching
+- `===` : arbitrary equality
+- `~=` : compatible release
+- `>` : exclusive ordered comparison
+- `>=` : inclusive ordered comparison
+#### Unsupported comparison operators in version identifiers:
+- `<` : exclusive ordered comparison
+- `<=` : inclusive ordered comparison
+- `!=` : version exclusion
+[github-home]: https://github.com/cgoldberg
+[github-repo]: https://github.com/cgoldberg/bump-dependencies
+[pypi-home]: https://pypi.org
+[pypi-bump-dependencies]: https://pypi.org/project/bump-dependencies
+[mit-license]: https://raw.githubusercontent.com/cgoldberg/bump-dependencies/refs/heads/master/LICENSE
+[pep-440]: https://peps.python.org/pep-0440
+[pep-508]: https://peps.python.org/pep-0508
+[pep-735]: https://peps.python.org/pep-0735
+[pypa-version-specifiers]: https://packaging.python.org/en/latest/specifications/version-specifiers
+[pypa-dependency-specifiers]: https://packaging.python.org/en/latest/specifications/dependency-specifiers
+[pypa-dependency-groups]: https://packaging.python.org/en/latest/specifications/dependency-groups
+[pypa-pyproject-dependencies]: https://packaging.python.org/en/latest/specifications/pyproject-toml/#dependencies-optional-dependencies

bump_dependencies-0.1.0/pyproject.toml ADDED Viewed

@@ -0,0 +1,64 @@
+[build-system]
+requires = ["setuptools"]
+build-backend = "setuptools.build_meta"
+[project]
+name = "bump-dependencies"
+version = "0.1.0"
+description = "Bump Python package dependencies in pyproject.toml"
+license = "MIT"
+license-files = ["LICENSE"]
+authors = [{name = "Corey Goldberg"}]
+maintainers = [{name = "Corey Goldberg"}]
+readme = "README.md"
+requires-python = ">=3.9"
+keywords = ["package", "dependencies", "requirements", "bump", "upgrade"]
+classifiers = [
+    "Environment :: Console",
+    "Intended Audience :: Developers",
+    "Programming Language :: Python",
+    "Programming Language :: Python :: 3",
+    "Programming Language :: Python :: 3.9",
+    "Programming Language :: Python :: 3.10",
+    "Programming Language :: Python :: 3.11",
+    "Programming Language :: Python :: 3.12",
+    "Programming Language :: Python :: 3.13",
+]
+dependencies = ["packaging==25.0", "requests==2.32.4", "rich==14.0.0", "tomlkit==0.13.3", "validate-pyproject==0.24.1"]
+[project.scripts]
+bump_dependencies = "bump_dependencies:main"
+[project.urls]
+homepage = "https://github.com/cgoldberg/bump-dependencies"
+source = "https://github.com/cgoldberg/bump-dependencies"
+download = "https://pypi.org/project/bump-dependencies"
+[dependency-groups]
+dev = ["tox"]
+lint = ["black", "ruff"]
+test = ["pytest==8.4.1", "pytest-sugar==1.0.0"]
+validate = ["packaging==25.0", "validate-pyproject==0.24.1"]
+[tool.setuptools]
+package-dir = {"" = "src"}
+[tool.pytest.ini_options]
+addopts = "-vv" # extra verbose
+[tool.black]
+line-length = 120
+target-version = ["py39"]
+[tool.ruff]
+line-length = 120
+respect-gitignore = true
+target-version = "py39"
+[tool.ruff.lint]
+extend-select = ["E4", "E7", "E9", "F", "I", "E501", "RUF022"]
+fixable = ["ALL"]
+[tool.ruff.format]
+docstring-code-format = true
+docstring-code-line-length = 120

bump_dependencies-0.1.0/setup.cfg ADDED Viewed

@@ -0,0 +1,4 @@
+[egg_info]
+tag_build =
+tag_date = 0

bump_dependencies-0.1.0/src/bump_dependencies.egg-info/PKG-INFO ADDED Viewed

@@ -0,0 +1,165 @@
+Metadata-Version: 2.4
+Name: bump-dependencies
+Version: 0.1.0
+Summary: Bump Python package dependencies in pyproject.toml
+Author: Corey Goldberg
+Maintainer: Corey Goldberg
+License-Expression: MIT
+Project-URL: homepage, https://github.com/cgoldberg/bump-dependencies
+Project-URL: source, https://github.com/cgoldberg/bump-dependencies
+Project-URL: download, https://pypi.org/project/bump-dependencies
+Keywords: package,dependencies,requirements,bump,upgrade
+Classifier: Environment :: Console
+Classifier: Intended Audience :: Developers
+Classifier: Programming Language :: Python
+Classifier: Programming Language :: Python :: 3
+Classifier: Programming Language :: Python :: 3.9
+Classifier: Programming Language :: Python :: 3.10
+Classifier: Programming Language :: Python :: 3.11
+Classifier: Programming Language :: Python :: 3.12
+Classifier: Programming Language :: Python :: 3.13
+Requires-Python: >=3.9
+Description-Content-Type: text/markdown
+License-File: LICENSE
+Requires-Dist: packaging==25.0
+Requires-Dist: requests==2.32.4
+Requires-Dist: rich==14.0.0
+Requires-Dist: tomlkit==0.13.3
+Requires-Dist: validate-pyproject==0.24.1
+Dynamic: license-file
+# bump-dependencies
+## Python - bump your package dependencies
+*Update dependency specifiers in `pyproject.toml` to latest versions*
+---
+- Copyright (c) 2025 [Corey Goldberg][github-home]
+- Development: [GitHub][github-repo]
+- Download/Install: [PyPI][pypi-bump-dependencies]
+- License: [MIT][mit-license]
+----
+## Installation:
+Install from [PyPI][pypi-bump-dependencies]:
+```
+pip install bump-dependencies
+```
+----
+## Usage:
+```
+usage: bump_dependencies [-h] [--dry-run] [--path PATH]
+options:
+  -h, --help   show this help message and exit
+  --dry-run    don't write changes to pyproject.toml
+  --path PATH  path to pyproject.toml (defaults to current directory)
+```
+## About:
+`bump_dependencies` is a Python CLI program that generates a new packaging
+configuration file (`pyproject.toml`) file with updated package dependencies.
+- for more information on declaring dependencies in a configuration file, see the [PyPA pyproject.toml Spec][pypa-pyproject-dependencies]
+- for more information on version specifiers, see [PEP 440][pep-440] and the [PyPA Version Specifiers Spec][pypa-version-specifiers]
+- for more information on dependency specifiers, see [PEP 508][pep-508] and the [PyPA Dependency Specifiers Spec][pypa-dependency-specifiers]
+- for more information on dependency groups, see [PEP 735][pep-735] and the [PyPA Dependency Groups Spec][pypa-dependency-groups]
+#### Example:
+If your `pyproject.toml` contains this:
+```
+[project]
+... some metadata ...
+dependencies = ["matplotlib~=3.9", "requests==2.29.0"]
+[project.optional-dependencies]
+socks = ["PySocks>=1.5.6"]
+[dependency-groups]
+dev = ["black==23.9.1", "ruff==0.9.5"]
+test = ["pytest>8", "pytest-mock>=3.11"]
+```
+It will update dependency specifiers to the latest versions available on [PyPI][pypi-home]:
+```
+[project]
+... some metadata ...
+dependencies = ["matplotlib~=3.10.3", "requests==2.32.4"]
+[project.optional-dependencies]
+socks = ["PySocks>=1.7.1"]
+[dependency-groups]
+dev = ["black==25.1.0", "ruff==0.12.1"]
+test = ["pytest>8.4.1", "pytest-mock>=3.14.1"]
+```
+#### Which sections of `pyproject.toml` will be updated?
+It will update dependency specifiers listed in various sections of `pyproject.toml`:
+- `dependencies` list from `[project]` section
+- dependency lists from `[project.optional-dependencies]` section
+- dependency lists from `[dependency-groups]` section
+#### Which dependency specifiers will be updated?
+- will only update dependency specifiers with version identifier
+  containing comparison operator: `==`, `===`, `~=`, `>`, `>=`
+  - example:
+    - `foo==1.0.0`
+    - `foo~=1.0`
+    - `foo>=1`
+- will not update dependency specifiers with version identifier
+  containing comparison operator: `<`, `<=`, `!=`
+  - example:
+    - `foo<2.0`
+    - `foo>=1,<2`
+    - `foo > 1.0, != 1.0.1`
+- will not update unversioned dependency specifiers
+  - example:
+    - `foo`
+    - `foo[bar]`
+- will not update direct reference dependency specifiers
+  - example:
+    - `foo @ https://github.com/foo/foo/archive/1.0.0.zip`
+    - `foo @ file:///builds/foo-1.0.0-py3-none-any.whl`
+#### Supported comparison operators in version identifiers:
+- `==` : version matching
+- `===` : arbitrary equality
+- `~=` : compatible release
+- `>` : exclusive ordered comparison
+- `>=` : inclusive ordered comparison
+#### Unsupported comparison operators in version identifiers:
+- `<` : exclusive ordered comparison
+- `<=` : inclusive ordered comparison
+- `!=` : version exclusion
+[github-home]: https://github.com/cgoldberg
+[github-repo]: https://github.com/cgoldberg/bump-dependencies
+[pypi-home]: https://pypi.org
+[pypi-bump-dependencies]: https://pypi.org/project/bump-dependencies
+[mit-license]: https://raw.githubusercontent.com/cgoldberg/bump-dependencies/refs/heads/master/LICENSE
+[pep-440]: https://peps.python.org/pep-0440
+[pep-508]: https://peps.python.org/pep-0508
+[pep-735]: https://peps.python.org/pep-0735
+[pypa-version-specifiers]: https://packaging.python.org/en/latest/specifications/version-specifiers
+[pypa-dependency-specifiers]: https://packaging.python.org/en/latest/specifications/dependency-specifiers
+[pypa-dependency-groups]: https://packaging.python.org/en/latest/specifications/dependency-groups
+[pypa-pyproject-dependencies]: https://packaging.python.org/en/latest/specifications/pyproject-toml/#dependencies-optional-dependencies

bump_dependencies-0.1.0/src/bump_dependencies.egg-info/SOURCES.txt ADDED Viewed

@@ -0,0 +1,11 @@
+LICENSE
+README.md
+pyproject.toml
+src/bump_dependencies.py
+src/test_bump_dependencies.py
+src/bump_dependencies.egg-info/PKG-INFO
+src/bump_dependencies.egg-info/SOURCES.txt
+src/bump_dependencies.egg-info/dependency_links.txt
+src/bump_dependencies.egg-info/entry_points.txt
+src/bump_dependencies.egg-info/requires.txt
+src/bump_dependencies.egg-info/top_level.txt

bump_dependencies-0.1.0/src/bump_dependencies.egg-info/dependency_links.txt ADDED Viewed

	@@ -0,0 +1 @@
1	+

bump_dependencies-0.1.0/src/bump_dependencies.egg-info/entry_points.txt ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ [console_scripts]
2	+ bump_dependencies = bump_dependencies:main

bump_dependencies-0.1.0/src/bump_dependencies.egg-info/requires.txt ADDED Viewed

@@ -0,0 +1,5 @@
+packaging==25.0
+requests==2.32.4
+rich==14.0.0
+tomlkit==0.13.3
+validate-pyproject==0.24.1

bump_dependencies-0.1.0/src/bump_dependencies.egg-info/top_level.txt ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ bump_dependencies
2	+ test_bump_dependencies

bump_dependencies-0.1.0/src/bump_dependencies.py ADDED Viewed

@@ -0,0 +1,186 @@
+#!/usr/bin/env python
+# Corey Goldberg, 2025
+# License: MIT
+"""Bump Python package dependencies in pyproject.toml"""
+import argparse
+import os
+import re
+import requests
+import tomlkit
+from rich.console import Console
+from validate_pyproject import api as validate_pyproject_api
+from validate_pyproject.errors import ValidationError
+def get_dependency_name_and_operator(dependency_specifier):
+    illegal_chars = ("/", ":", "@")
+    if any(char in dependency_specifier for char in illegal_chars):
+        raise ValueError("can't handle direct reference dependency specifiers")
+    if ";" in dependency_specifier:
+        dependency_specifier = dependency_specifier.split(";")[0]
+    invalid_operators = ("!=", "<=", "<")
+    for op in invalid_operators:
+        if op in dependency_specifier:
+            raise ValueError(f"skipping unsupported '{op}' version identifier")
+    valid_operators = ("===", "==", "~=", ">=", ">")
+    operators = re.findall("|".join(valid_operators), dependency_specifier)
+    if not operators:
+        raise ValueError("no version specified")
+    elif len(operators) != 1:
+        raise ValueError("can't handle complex dependency specifiers")
+    operator = operators[0]
+    dependency_name = dependency_specifier.replace(" ", "").split(operator)[0].strip()
+    return dependency_name, operator
+def get_dependencies_groups(pyproject_data):
+    """Map each dependency group name to a list of dependency specifiers
+    This includes:
+        - `dependencies` list from `[project]` section
+        - dependency lists from `[project.optional-dependencies]` section
+        - dependency lists from `[dependency-groups]` section
+    """
+    groups = {}
+    project_dependencies = list(pyproject_data["project"].get("dependencies", []))
+    if project_dependencies:
+        groups.update({"project": project_dependencies})
+    optional_dependencies = dict(pyproject_data["project"].get("optional-dependencies", {}))
+    if optional_dependencies:
+        groups.update({"optional_dependencies": optional_dependencies})
+    dependency_groups = dict(pyproject_data.get("dependency-groups", {}))
+    if dependency_groups:
+        groups.update({"dependency_groups": dependency_groups})
+    if not groups:
+        raise ValueError("no dependencies found")
+    return groups
+def update_dependency(dependency_specifier):
+    dependency_name, operator = get_dependency_name_and_operator(dependency_specifier)
+    new_dependency_version = fetch_latest_package_version(get_package_base_name(dependency_name))
+    updated_dependency_specifier = None
+    if new_dependency_version is not None:
+        if ";" in dependency_specifier:
+            after_semi = "".join(dependency_specifier.split(";")[1:])
+            updated_dependency_specifier = f"{dependency_name}{operator}{new_dependency_version};{after_semi}"
+        else:
+            updated_dependency_specifier = f"{dependency_name}{operator}{new_dependency_version}"
+    return updated_dependency_specifier
+def update_dependencies(dependency_specifiers):
+    updated_dependency_specifiers = []
+    for dependency_specifier in dependency_specifiers:
+        if isinstance(dependency_specifier, tomlkit.items.InlineTable):
+            print(f"- skipping inline table: '{dependency_specifier}'")
+            updated_dependency_specifiers.append(dependency_specifier)
+            continue
+        try:
+            get_dependency_name_and_operator(dependency_specifier)
+        except ValueError as e:
+            print(f"- not updating: '{dependency_specifier}' ({e})")
+            updated_dependency_specifiers.append(dependency_specifier)
+            continue
+        updated_dependency_specifier = update_dependency(dependency_specifier)
+        if updated_dependency_specifier is not None:
+            if dependency_specifier != updated_dependency_specifier:
+                print(f"- updating: '{dependency_specifier}' to '{updated_dependency_specifier}'")
+                updated_dependency_specifiers.append(updated_dependency_specifier)
+            else:
+                print(f"- not updating: '{dependency_specifier}' (no new version available)")
+                updated_dependency_specifiers.append(dependency_specifier)
+        else:
+            print(f"- not updating: '{dependency_specifier}' (error retrieving version from pypi.org)")
+            updated_dependency_specifiers.append(dependency_specifier)
+    return updated_dependency_specifiers
+def get_package_base_name(package_name):
+    match = re.match(r"^(.*?)\[", package_name)
+    if match:
+        return match.group(1).strip()
+    return package_name.strip()
+def fetch_latest_package_version(package_name):
+    url = f"https://pypi.org/pypi/{package_name}/json"
+    try:
+        response = requests.get(url)
+    except requests.exceptions.ConnectionError:
+        print("error connecting to pypi.org")
+        return None
+    try:
+        response.raise_for_status()  # raise an exception for bad status codes
+    except requests.exceptions.HTTPError:
+        return None
+    return response.json()["info"]["version"]
+def run(pyproject_toml_path, dry_run):
+    console = Console()
+    with console.status(""):
+        print(f"loading: {pyproject_toml_path}")
+        try:
+            with open(pyproject_toml_path) as f:
+                pyproject_data = tomlkit.load(f)
+        except FileNotFoundError:
+            exit("\nno pyproject.toml found")
+        except Exception as e:
+            exit(f"\ninvalid pyproject.toml: {e}")
+        print(f"validating: {os.path.basename(pyproject_toml_path)}\n")
+        validator = validate_pyproject_api.Validator()
+        try:
+            validator(pyproject_data)
+        except ValidationError as e:
+            exit(f"invalid pyproject.toml: {e.message}")
+        try:
+            dependencies_groups_map = get_dependencies_groups(pyproject_data)
+        except ValueError as e:
+            exit(e)
+        for key, value in dependencies_groups_map.items():
+            if key == "project":
+                pyproject_data["project"]["dependencies"] = update_dependencies(value)
+            if key == "optional_dependencies":
+                pyproject_data["project"]["optional-dependencies"] = {
+                    dependency_group: update_dependencies(dependency_specifiers)
+                    for dependency_group, dependency_specifiers in value.items()
+                }
+            if key == "dependency_groups":
+                pyproject_data["dependency-groups"] = {
+                    dependency_group: update_dependencies(dependency_specifiers)
+                    for dependency_group, dependency_specifiers in value.items()
+                }
+        if dry_run:
+            print("\nnot writing new pyproject.toml with updated dependencies")
+        else:
+            with open(pyproject_toml_path, "w") as f:
+                tomlkit.dump(pyproject_data, f)
+            print("\ngenerated new pyproject.toml with updated dependencies")
+def main():
+    parser = argparse.ArgumentParser()
+    parser.add_argument(
+        "--dry-run",
+        action="store_true",
+        default=False,
+        dest="dry_run",
+        help="don't write changes to pyproject.toml",
+    )
+    parser.add_argument(
+        "--path",
+        default=os.path.join(os.getcwd(), "pyproject.toml"),
+        help="path to pyproject.toml (defaults to current directory)",
+    )
+    args = parser.parse_args()
+    run(args.path, args.dry_run)
+if __name__ == "__main__":
+    main()

bump_dependencies-0.1.0/src/test_bump_dependencies.py ADDED Viewed

@@ -0,0 +1,171 @@
+# Corey Goldberg, 2025
+# License: MIT
+"""Tests for bump_dependencies"""
+import pytest
+import bump_dependencies as bd
+@pytest.fixture(
+    params=[
+        ("foo==1.0.0", "foo"),
+        ("foo~=1.0", "foo"),
+        ("foo===1.0.0", "foo"),
+        ("foo==1.0.*", "foo"),
+        ("foo==1.0.1dev0", "foo"),
+        ("foo~=1.1a1", "foo"),
+        ("foo==1.1.*", "foo"),
+        ("foo>1", "foo"),
+        ("foo>=1.0", "foo"),
+        ("foo[bar] == 2012.4", "foo[bar]"),
+        ("foo==1.0.post2.dev3", "foo"),
+        ("foo[bar] >= 1.0dev1", "foo[bar]"),
+        ("foo>1.0; python_version < '4.0'", "foo"),
+        ("foo[bar]>=1.0", "foo[bar]"),
+        ("foo[bar,baz]==1.0.0", "foo[bar,baz]"),
+        ("foo[ bar, baz ] ~= 1.0.0", "foo[bar,baz]"),
+        ("foo > 1.0", "foo"),
+        ("foo[bar] == 1.0", "foo[bar]"),
+        ("foo== 1.0", "foo"),
+        ("foo ==1.0", "foo"),
+        ("foo   ==   1.0", "foo"),
+        (" foo==1.0 ", "foo"),
+        ("  foo > 1.0  ", "foo"),
+        ("foo==1.0 ; python_version < '4.0'", "foo"),
+        ("foo~=1.0.0;python_version>'2.7'", "foo"),
+        ("foo[bar, baz, qux]==1.0.0;python_version>'2.7'", "foo[bar,baz,qux]"),
+        ("foo == 1.0; os_name=='a' or os_name=='b'", "foo"),
+    ]
+)
+def valid_specifier_name(request):
+    return request.param
+@pytest.fixture(
+    params=[
+        "foo<1.0",
+        "foo<=1.0",
+        " foo <= 1.0.0 ",
+        "foo!=1.0",
+        "foo==1!1.0foo>=1,<2foo >= 1.0.1, <= 2.0.*",
+        "foo>1.0.0,<2.0.0",
+        "foo <=2.0, != 1.0.1",
+        "foo~=1.0.0,!=1.0.1foo ~=1.0.0, != 1.0.1foo>=1.0,<2.0,!=1.5.7",
+    ]
+)
+def unsupported_specifier(request):
+    return request.param
+@pytest.fixture(
+    params=[
+        "foo",
+        "foo-bar2",
+        " foo ",
+        "foo[bar]",
+        "foo [bar,baz]",
+        "foo[bar, baz, qux] ;platform_version=='2'",
+        "foo; os_name=='a' or os_name=='b'",
+    ]
+)
+def unversioned_specifier(request):
+    return request.param
+@pytest.fixture(
+    params=[
+        "foo >= 1.0.1, == 1.0.*",
+        "foo [bar,baz] >= 2.8.1, == 2.8.* ; python_version < '4.0'",
+    ]
+)
+def complex_specifier(request):
+    return request.param
+@pytest.fixture(
+    params=[
+        "foo@http://foo.com",
+        "foo @ http://foo.com ; python_version=='2.7'",
+        "foo @ https://github.com/foo/foo/archive/1.0.0.zip",
+        "foo @ file:///builds/foo-1.0.0-py3-none-any.whl`",
+    ]
+)
+def direct_reference_specifier(request):
+    return request.param
+@pytest.fixture(
+    params=[
+        "foo",
+        " foo ",
+        "  foo",
+        "foo[",
+        "foo [",
+        "foo[bar]",
+        "foo[ bar ]",
+        "foo [bar]",
+        "foo[bar,baz]",
+        "foo[bar, baz]",
+        "foo [ bar , baz ]",
+    ]
+)
+def package_name(request):
+    return request.param
+def test_name_and_operator(valid_specifier_name):
+    dependency_specifier, name = valid_specifier_name
+    valid_operators = ("===", "==", "~=", ">=", ">")
+    dependency_name, operator = bd.get_dependency_name_and_operator(dependency_specifier)
+    assert isinstance(operator, str)
+    assert operator in valid_operators
+    assert isinstance(dependency_name, str)
+    assert dependency_name == name
+def test_name_and_operator_with_unsupported_operator(unsupported_specifier):
+    with pytest.raises(ValueError, match="skipping unsupported '.*' version identifier"):
+        bd.get_dependency_name_and_operator(unsupported_specifier)
+def test_name_and_operator_with_unversioned_specifier(unversioned_specifier):
+    with pytest.raises(ValueError, match="no version specified"):
+        bd.get_dependency_name_and_operator(unversioned_specifier)
+def test_name_and_operator_with_complex_specifier(complex_specifier):
+    with pytest.raises(ValueError, match="can't handle complex dependency specifiers"):
+        bd.get_dependency_name_and_operator(complex_specifier)
+def test_name_and_operator_with_direct_reference_specifier(direct_reference_specifier):
+    with pytest.raises(ValueError, match="can't handle direct reference dependency specifiers"):
+        bd.get_dependency_name_and_operator(direct_reference_specifier)
+def test_update_dependency(valid_specifier_name):
+    dependency_specifier, name = valid_specifier_name
+    dependency_name, operator = bd.get_dependency_name_and_operator(dependency_specifier)
+    updated_dependency_specifier = bd.update_dependency(dependency_specifier)
+    assert isinstance(updated_dependency_specifier, str)
+    assert operator in updated_dependency_specifier
+    assert dependency_specifier not in updated_dependency_specifier
+    assert name in updated_dependency_specifier
+def test_fetch_latest_package_version():
+    version = bd.fetch_latest_package_version("requests")
+    assert isinstance(version, str)
+    assert version[0].isdigit()
+def test_fetch_unavailable_package_version():
+    version = bd.fetch_latest_package_version("definitely-not-a-package-found-on-pypi-1234")
+    assert version is None
+def test_package_base_name(package_name):
+    base_name = bd.get_package_base_name(package_name)
+    assert base_name == "foo"