dependence 1.0.4__py3-none-any.whl → 1.1.0__py3-none-any.whl

dependence/upgrade.py

@@ -0,0 +1,220 @@
+from __future__ import annotations
+
+import argparse
+import sys
+from itertools import chain
+from typing import TYPE_CHECKING
+
+from dependence._utilities import (
+    check_output,
+    iter_configuration_files,
+    iter_parse_delimited_values,
+)
+from dependence.freeze import get_frozen_requirements
+from dependence.update import update
+
+if TYPE_CHECKING:
+    from collections.abc import Iterable
+
+
+def upgrade(
+    requirements: Iterable[str],
+    *,
+    ignore_update: Iterable[str] = (),
+    all_extra_name: str = "",
+    include_pointers: tuple[str, ...] = (),
+    exclude_pointers: tuple[str, ...] = (),
+    exclude: Iterable[str] = (),
+    exclude_recursive: Iterable[str] = (),
+    depth: int | None = None,
+) -> None:
+    """
+    This function obtains a list of dependencies for the specified
+    `requirements` using `dependence.update.get_frozen_requirements()`,
+    upgrades all of these dependencies in the current environment,
+    then updates version specifiers for all requirements/dependencies
+    in any or the `requirements` which are project config files
+    to align with the newly installed package versions (using
+    `dependence.update.update()`).
+
+    Parameters:
+        requirements: One or more requirement specifiers (for example:
+            "requirement-name[extra-a,extra-b]" or ".[extra-a, extra-b]) and/or
+            paths to a setup.py, setup.cfg, pyproject.toml, tox.ini or
+            requirements.txt file.
+        ignore_update: One or more project names to ignore (leave as-is)
+            when updating a dependency's requirement specifier in the
+            provided pyproject.toml/setup.cfg/requirements.txt/tox.ini
+            file(s). Note that this does not prevent the package from being
+            upgraded—for that you need to pass the package name in
+            `exclude` or `exclude_recursive`.
+        all_extra_name: If provided, an extra which consolidates
+            the requirements for all other extras will be added/updated to
+            pyproject.toml or setup.cfg (this argument is ignored for
+            requirements.txt and tox.ini files).
+        include_pointers: A tuple of JSON pointers indicating elements to
+            include (defaults to all elements). This applies only to TOML
+            files (including pyproject.toml), and is ignored for all other
+            file types.
+        exclude_pointers: A tuple of JSON pointers indicating elements to
+            exclude (defaults to no exclusions). This applies only to TOML
+            files (including pyproject.toml), and is ignored for all other
+            file types.
+        exclude: One or more distributions to exclude when upgrading packages.
+        exclude_recursive: One or more distributions to exclude when
+            upgrading packages. Recursive dependency discovery is also
+            halted for these distributions, unlike those passed to `exclude`.
+        depth: The maximum recursion depth to traverse when discovering
+            dependencies. If `None` (the default), all dependencies are
+            discovered.
+    """
+    frozen_requirements: tuple[str, ...] = get_frozen_requirements(
+        requirements,
+        exclude=exclude,
+        exclude_recursive=exclude_recursive,
+        no_version="*",
+        depth=depth,
+        include_pointers=include_pointers,
+        exclude_pointers=exclude_pointers,
+    )
+    command: tuple[str, ...] = (
+        sys.executable,
+        "-m",
+        "pip",
+        "install",
+        "--upgrade",
+        *frozen_requirements,
+    )
+    check_output(command)
+    configuration_files: tuple[str, ...] = tuple(
+        chain(
+            *map(iter_configuration_files, requirements)  # type: ignore
+        )
+    )
+    if configuration_files:
+        update(
+            configuration_files,
+            ignore=ignore_update,
+            all_extra_name=all_extra_name,
+            include_pointers=include_pointers,
+            exclude_pointers=exclude_pointers,
+        )
+
+
+def main() -> None:
+    parser: argparse.ArgumentParser = argparse.ArgumentParser(
+        prog="dependence upgrade",
+        description=(
+            "Upgrade all dependencies for specified packages/projects, "
+            "then upgrade version specifiers in the project files "
+            "to align with newly installed versions of each distribution."
+        ),
+    )
+    parser.add_argument(
+        "-iu",
+        "--ignore-update",
+        default=[],
+        type=str,
+        action="append",
+        help=(
+            "A comma-separated list of distributions to ignore (leave "
+            "any requirements pertaining to the package as-is) when "
+            "updating project files"
+        ),
+    )
+    parser.add_argument(
+        "-aen",
+        "--all-extra-name",
+        default="",
+        type=str,
+        help=(
+            "If provided, an extra which consolidates the requirements "
+            "for all other extras will be added/updated to pyproject.toml "
+            "or setup.cfg (this argument is ignored for "
+            "requirements.txt files and other TOML files)"
+        ),
+    )
+    parser.add_argument(
+        "--include-pointer",
+        default=[],
+        type=str,
+        action="append",
+        help=(
+            "One or more JSON pointers of elements to *include* "
+            "(applies to TOML files only)"
+        ),
+    )
+    parser.add_argument(
+        "--exclude-pointer",
+        default=[],
+        type=str,
+        action="append",
+        help=(
+            "One or more JSON pointers of elements to *exclude* "
+            "(applies to TOML files only)"
+        ),
+    )
+    parser.add_argument(
+        "-e",
+        "--exclude",
+        default=[],
+        type=str,
+        action="append",
+        help=(
+            "A distribution (or comma-separated list of distributions) to "
+            "exclude when performing upgrades"
+        ),
+    )
+    parser.add_argument(
+        "-er",
+        "--exclude-recursive",
+        default=[],
+        type=str,
+        action="append",
+        help=(
+            "A distribution (or comma-separated list of distributions) to "
+            "exclude when performing upgrades. Unlike -e / --exclude, "
+            "this argument also precludes recursive requirement discovery "
+            "for the specified packages, thereby excluding all of the "
+            "excluded package's requirements which are not required by "
+            "another (non-excluded) distribution from the upgrade."
+        ),
+    )
+    parser.add_argument(
+        "-d",
+        "--depth",
+        default=None,
+        type=int,
+        help="Depth of recursive requirement discovery",
+    )
+    parser.add_argument(
+        "requirement",
+        nargs="+",
+        type=str,
+        help=(
+            "One or more requirement specifiers (for example: "
+            '"requirement-name", "requirement-name[extra-a,extra-b]", '
+            '".[extra-a, extra-b]" or '
+            '"../other-editable-package-directory[extra-a, extra-b]) '
+            "and/or paths to a setup.py, setup.cfg, pyproject.toml, "
+            "tox.ini or requirements.txt file"
+        ),
+    )
+    namespace: argparse.Namespace = parser.parse_args()
+    upgrade(
+        requirements=namespace.requirement,
+        exclude=tuple(iter_parse_delimited_values(namespace.exclude)),
+        exclude_recursive=tuple(
+            iter_parse_delimited_values(namespace.exclude_recursive)
+        ),
+        ignore_update=tuple(
+            iter_parse_delimited_values(namespace.ignore_update)
+        ),
+        all_extra_name=namespace.all_extra_name,
+        include_pointers=tuple(namespace.include_pointer),
+        exclude_pointers=tuple(namespace.exclude_pointer),
+    )
+
+
+if __name__ == "__main__":
+    main()

{dependence-1.0.4.dist-info → dependence-1.1.0.dist-info}/METADATA

@@ -1,18 +1,18 @@
-Metadata-Version: 2.3
+Metadata-Version: 2.4
 Name: dependence
-Version: 1.0.4
+Version: 1.1.0
 Summary: A dependency management tool for python projects
 Project-URL: Documentation, https://dependence.enorganic.org
 Project-URL: Repository, https://github.com/enorganic/dependence
 Author-email: david@belais.me
-License: MIT
+License-Expression: MIT
 Keywords: dependencies,requirements
-Requires-Python: ~=3.8
+Requires-Python: ~=3.9
 Requires-Dist: jsonpointer
 Requires-Dist: packaging
 Requires-Dist: pip
 Requires-Dist: setuptools>63
-Requires-Dist: tomli-w~=1.0
+Requires-Dist: tomli-w~=1.2
 Requires-Dist: tomli~=2.2
 Description-Content-Type: text/markdown
 
@@ -21,11 +21,11 @@ Description-Content-Type: text/markdown
 [![test](https://github.com/enorganic/dependence/actions/workflows/test.yml/badge.svg?branch=main)](https://github.com/enorganic/dependence/actions/workflows/test.yml)
 [![PyPI version](https://badge.fury.io/py/dependence.svg?icon=si%3Apython)](https://badge.fury.io/py/dependence)
 
-Dependence provides a Command Line Interface and library for aligning
-a python projects' declared dependencies with the package versions
-installed in the environment in which `dependence` is executed, and for
-"freezing" recursively resolved package dependencies (like `pip freeze`, but
-for a package, instead of the entire environment).
+Dependence provides a Command Line Interface and library for performing
+dependency upgrades on a python project, aligning declared dependencies with
+the package versions installed in the environment in which `dependence` is
+executed, and for "freezing" recursively resolved package dependencies
+(like `pip freeze`, but for a package, instead of the entire environment).
 
 - [Documentation](https://enorganic.github.io/dependence/)
 - [Contributing](https://enorganic.github.io/dependence/contributing)
@@ -38,7 +38,72 @@ You can install `dependence` with pip:
 pip3 install dependence
 ```
 
-## Example Usage
+## Usage
+
+### Upgrading Dependencies
+
+The `dependence upgrade` command, and the `dependence.upgrade.upgrade`
+function, discover and upgrade project and environment dependencies in the
+environment in which dependence is installed to their latest version
+aligned with project and dependency requirements, then selectively update
+requirement specifiers in any specified TOML files (such as pyproject.toml),
+setup.cfg file, requirements.txt files, or tox.ini files. Because
+pyproject.toml files may contain dependencies for more than one environment,
+such as when using [hatch](https://hatch.pypa.io/) environments,
+[JSON-style pointers](https://datatracker.ietf.org/doc/html/rfc6901) are used
+to include or exclude specific parts of TOML files.
+
+For example, in [this project's Makefile
+](https://github.com/enorganic/dependence/blob/main/Makefile#L27), we define a
+`make upgrade` target as follows:
+
+```Makefile
+SHELL := bash
+PYTHON_VERSION := 3.9
+
+upgrade:
+    hatch run dependence upgrade\
+     --include-pointer /tool/hatch/envs/default\
+     --include-pointer /project\
+     pyproject.toml && \
+    hatch run docs:dependence upgrade\
+     --include-pointer /tool/hatch/envs/docs\
+     --include-pointer /project\
+     pyproject.toml && \
+    hatch run hatch-static-analysis:dependence upgrade\
+     --include-pointer /tool/hatch/envs/docs\
+     --include-pointer /project\
+     pyproject.toml && \
+    hatch run hatch-test.py$(PYTHON_VERSION):dependence upgrade\
+     --include-pointer /tool/hatch/envs/hatch-test\
+     --include-pointer /project\
+     pyproject.toml && \
+    make requirements
+```
+
+You can reference the [associated pyproject.toml file for this project
+](https://github.com/enorganic/dependence/blob/main/pyproject.toml#L21)
+for reference concerning the implications of `--include-pointer`, which
+uses identical syntax to [JSON pointers
+](https://datatracker.ietf.org/doc/html/rfc6901). The `--exclude-pointer`
+parameter works identically, but in reverse. If both `--include-pointer`
+and `--exclude-pointer` are used, only sections which match both conditions
+will be updated.
+
+You may refer to the [`dependence upgrade` CLI reference](./cli.md#dependence-upgrade)
+and/or [`dependence.upgrade` API reference](./api/upgrade.md) for details
+concerning this command/module, related options, and more complex use case
+examples.
+
+The `dependence upgrade` command, and the `dependence.upgrade.upgrade`
+function, are simply a composite of the dependency listing and update
+functionalities covered below, but which a `pip install --upgrade`
+command executed in between—so please read further for additional details.
+All parameters are directly passed, with the exception of
+`--ignore-update`/`ignore_update`, which is translated to the
+`--ignore`/`ignore` parameter for
+`dependence update`/`dependence.update.update` (renamed in this operation
+for clarity of purpose).
 
 ### Listing Dependencies
 
@@ -48,8 +113,8 @@ requirements.txt, pyproject.toml, setup.cfg, or tox.ini files. The output
 format matches that of `pip freeze`, but only lists dependencies of indicated
 packages and/or editable project locations.
 
-You may refer to the [`dependence freeze` CLI reference](https://dependence.enorganic.org/cli/#dependence-freeze)
-and/or [`dependence.freeze` API reference](https://dependence.enorganic.org/api/freeze/) for details
+You may refer to the [`dependence freeze` CLI reference](./cli.md#dependence-freeze)
+and/or [`dependence.freeze` API reference](./api/freeze.md) for details
 concerning this command/module, related options, and more complex use case
 examples.
 
@@ -157,7 +222,7 @@ $ diff pyproject_before.toml pyproject_after.toml
 ```
 
 As you can see, only the version specifier for tomli changed. We know that
-every dependency was upgraded, wo why was only the `tomli` version specifier
+every dependency was upgraded, so why was only the `tomli` version specifier
 updated? By design. Here are the rules `dependence update` adheres to:
 
 -   We only update requirements versions when they have *inclusive* specifiers.
@@ -174,7 +239,7 @@ updated? By design. Here are the rules `dependence update` adheres to:
 -   If your requirement is unversioned, we don't touch it, of course. This is
     why you didn't see any change for "pip".
 
-You may refer to the [`dependence update` CLI reference](https://dependence.enorganic.org/cli/#dependence-update)
-and/or [`dependence.update` API reference](https://dependence.enorganic.org/api/update/) for details
+You may refer to the [`dependence update` CLI reference](./cli.md#dependence-update)
+and/or [`dependence.update` API reference](./api/update.md) for details
 concerning this command/module, related options, and more complex use
 cases/examples.

dependence-1.1.0.dist-info/RECORD

@@ -0,0 +1,11 @@
+dependence/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+dependence/__main__.py,sha256=zk67MINE1FpsBcXDDvRiHQwmO7_4iay_Rkq3JTPrha4,1802
+dependence/_utilities.py,sha256=CxIl7BkoTqMtrOsJzq544_RDa8-QtZufKj31PazIBFI,36790
+dependence/freeze.py,sha256=gZ3ZJuxphojUmlx8LoZ-qFTd-EUTPF-oM-FKFYVxoSs,15518
+dependence/py.typed,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+dependence/update.py,sha256=k6KtRbJORnbC7-bkDbVCDjsJkwVkGshQncLh1RjmolU,20554
+dependence/upgrade.py,sha256=lNovLvKhxiczZAJj2_hHrbkDscNOTrx1xaOhmobVNSI,7747
+dependence-1.1.0.dist-info/METADATA,sha256=mUjlA-89b_G0rNU0uLrgxznIqKeFGu7fQtkmMx4pGCM,8364
+dependence-1.1.0.dist-info/WHEEL,sha256=qtCwoSJWgHk21S1Kb4ihdzI2rlJ1ZKaIurTj_ngOhyQ,87
+dependence-1.1.0.dist-info/entry_points.txt,sha256=NStO_B0D81ObVYr9zDs6LCy0whm0a8KCiiFHMmTwOVE,56
+dependence-1.1.0.dist-info/RECORD,,

{dependence-1.0.4.dist-info → dependence-1.1.0.dist-info}/WHEEL

@@ -1,4 +1,4 @@
 Wheel-Version: 1.0
-Generator: hatchling 1.26.3
+Generator: hatchling 1.27.0
 Root-Is-Purelib: true
 Tag: py3-none-any

dependence-1.0.4.dist-info/RECORD

@@ -1,10 +0,0 @@
-dependence/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-dependence/__main__.py,sha256=myBIBZdez2jC3_dkVSE-mOLo39yKi2cF_0NuVXcXF1E,1528
-dependence/_utilities.py,sha256=gUFC6lzd3T60_-3kqzqTJRmmilzM64HRHz6rxjhJd9c,33697
-dependence/freeze.py,sha256=t9yoavc8h5OWA5za_tNrEQIGThFHy679O-6MnXUBZmQ,14855
-dependence/py.typed,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-dependence/update.py,sha256=ymncDTVh9UxECQwOIcU3OWIfhvCP3kdQlyKfJH34CoU,19978
-dependence-1.0.4.dist-info/METADATA,sha256=YQEq7pvYyjuLn23mF7yUcztYyFK-K2UbzE0l27gWEvw,5570
-dependence-1.0.4.dist-info/WHEEL,sha256=C2FUgwZgiLbznR-k0b_5k3Ai_1aASOXDss3lzCUsUug,87
-dependence-1.0.4.dist-info/entry_points.txt,sha256=NStO_B0D81ObVYr9zDs6LCy0whm0a8KCiiFHMmTwOVE,56
-dependence-1.0.4.dist-info/RECORD,,