pysentry-rs 0.3.11__tar.gz → 0.3.12__tar.gz

{pysentry_rs-0.3.11 → pysentry_rs-0.3.12}/.github/workflows/ci.yml

@@ -249,7 +249,7 @@ jobs:
     strategy:
       matrix:
         os: [ubuntu-latest, macos-latest, windows-latest]
-        python-version: ["3.9", "3.10", "3.11", "3.12", "3.13"]
+        python-version: ["3.9", "3.10", "3.11", "3.12", "3.13", "3.14"]
 
     steps:
       - uses: actions/checkout@v4

pysentry_rs-0.3.12/.github/workflows/dev-release-test.yml

@@ -0,0 +1,213 @@
+name: Dev Release Test
+
+on:
+  workflow_dispatch:
+
+env:
+  CARGO_TERM_COLOR: always
+  RUST_BACKTRACE: 1
+
+jobs:
+  test-build-binaries:
+    name: Test Build Binaries
+    strategy:
+      fail-fast: false
+      matrix:
+        include:
+          - target: x86_64-unknown-linux-gnu
+            os: ubuntu-latest
+            name: linux-x64
+            artifact_name: pysentry
+          - target: x86_64-unknown-linux-musl
+            os: ubuntu-latest
+            name: linux-x64-musl
+            artifact_name: pysentry
+          - target: aarch64-unknown-linux-gnu
+            os: ubuntu-latest
+            name: linux-arm64
+            artifact_name: pysentry
+          - target: x86_64-apple-darwin
+            os: macos-latest
+            name: macos-x64
+            artifact_name: pysentry
+          - target: aarch64-apple-darwin
+            os: macos-latest
+            name: macos-arm64
+            artifact_name: pysentry
+          - target: x86_64-pc-windows-msvc
+            os: windows-latest
+            name: windows-x64
+            artifact_name: pysentry.exe
+
+    runs-on: ${{ matrix.os }}
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Install Rust
+        uses: dtolnay/rust-toolchain@stable
+        with:
+          targets: ${{ matrix.target }}
+
+      - name: Install cross
+        if: matrix.target != 'x86_64-unknown-linux-gnu'
+        run: cargo install cross
+
+      - name: Build binary (native)
+        if: matrix.target == 'x86_64-unknown-linux-gnu'
+        run: cargo build --release --target ${{ matrix.target }} --bin pysentry
+
+      - name: Build binary (cross-compile)
+        if: matrix.target != 'x86_64-unknown-linux-gnu'
+        run: cross build --release --target ${{ matrix.target }} --bin pysentry
+
+      - name: Package binary (Unix)
+        if: matrix.os != 'windows-latest'
+        run: |
+          name=pysentry-${{ matrix.name }}
+          mkdir $name
+          cp target/${{ matrix.target }}/release/${{ matrix.artifact_name }} $name/
+          cp README.md $name/
+          cp LICENSE $name/
+          tar -czf $name.tar.gz $name
+          echo "ASSET=$name.tar.gz" >> $GITHUB_ENV
+
+      - name: Package binary (Windows)
+        if: matrix.os == 'windows-latest'
+        run: |
+          $name = "pysentry-${{ matrix.name }}"
+          mkdir $name
+          cp target/${{ matrix.target }}/release/${{ matrix.artifact_name }} $name/
+          cp README.md $name/
+          cp LICENSE $name/
+          Compress-Archive -Path $name -DestinationPath "$name.zip"
+          echo "ASSET=$name.zip" | Out-File -FilePath $env:GITHUB_ENV -Append
+
+      - name: Upload binary artifact
+        uses: actions/upload-artifact@v4
+        with:
+          name: binary-${{ matrix.name }}
+          path: ${{ env.ASSET }}
+          retention-days: 7
+
+  test-build-python-wheels:
+    name: Test Build Python Wheels
+    runs-on: ${{ matrix.osarch.os }}
+    strategy:
+      fail-fast: false
+      matrix:
+        osarch:
+          - os: ubuntu-latest
+            target: x86_64-unknown-linux-gnu
+          - os: ubuntu-latest
+            target: aarch64-unknown-linux-gnu
+          - os: windows-latest
+            target: x86_64-pc-windows-msvc
+          - os: macos-latest
+            target: x86_64-apple-darwin
+          - os: macos-latest
+            target: aarch64-apple-darwin
+        python: ["3.9", "3.10", "3.11", "3.12", "3.13", "3.14"]
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Install system dependencies (Ubuntu)
+        if: startsWith(matrix.osarch.os, 'ubuntu')
+        run: sudo apt-get update && sudo apt-get install -y libssl-dev pkg-config
+
+      - name: Set up Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: ${{ matrix.python }}
+          allow-prereleases: true
+
+      - name: Install Rust
+        uses: dtolnay/rust-toolchain@stable
+
+      - name: Set manylinux version
+        id: manylinux
+        if: startsWith(matrix.osarch.os, 'ubuntu')
+        run: |
+          if [[ "${{ matrix.osarch.target }}" == "aarch64-unknown-linux-gnu" ]]; then
+            echo "version=2_28" >> $GITHUB_OUTPUT
+          else
+            echo "version=auto" >> $GITHUB_OUTPUT
+          fi
+
+      - name: Build wheels
+        uses: PyO3/maturin-action@v1.49.4
+        with:
+          command: build
+          args: --release --features python --out dist -i ${{ matrix.python }}
+          sccache: "true"
+          manylinux: ${{ steps.manylinux.outputs.version || 'auto' }}
+          target: ${{ matrix.osarch.target }}
+
+      - name: Upload wheels
+        uses: actions/upload-artifact@v4
+        with:
+          name: wheels-${{ matrix.osarch.os }}-${{ matrix.osarch.target }}-${{ matrix.python }}
+          path: dist/*.whl
+          retention-days: 7
+
+  test-build-sdist:
+    name: Test Build Source Distribution
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Set up Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: "3.12"
+
+      - name: Install Rust
+        uses: dtolnay/rust-toolchain@stable
+
+      - name: Build sdist
+        uses: PyO3/maturin-action@v1.49.3
+        with:
+          command: sdist
+          args: --out dist
+
+      - name: Upload sdist
+        uses: actions/upload-artifact@v4
+        with:
+          name: sdist
+          path: dist/*.tar.gz
+          retention-days: 7
+
+  test-release-summary:
+    name: Release Test Summary
+    runs-on: ubuntu-latest
+    needs: [test-build-binaries, test-build-python-wheels, test-build-sdist]
+    if: always()
+    steps:
+      - name: Check build results
+        run: |
+          echo "## Build Results" >> $GITHUB_STEP_SUMMARY
+          echo "" >> $GITHUB_STEP_SUMMARY
+
+          if [ "${{ needs.test-build-binaries.result }}" == "success" ]; then
+            echo "✅ Binary builds: SUCCESS" >> $GITHUB_STEP_SUMMARY
+          else
+            echo "❌ Binary builds: FAILED" >> $GITHUB_STEP_SUMMARY
+          fi
+
+          if [ "${{ needs.test-build-python-wheels.result }}" == "success" ]; then
+            echo "✅ Python wheel builds: SUCCESS" >> $GITHUB_STEP_SUMMARY
+          else
+            echo "❌ Python wheel builds: FAILED" >> $GITHUB_STEP_SUMMARY
+          fi
+
+          if [ "${{ needs.test-build-sdist.result }}" == "success" ]; then
+            echo "✅ Source distribution build: SUCCESS" >> $GITHUB_STEP_SUMMARY
+          else
+            echo "❌ Source distribution build: FAILED" >> $GITHUB_STEP_SUMMARY
+          fi
+
+          echo "" >> $GITHUB_STEP_SUMMARY
+          echo "All artifacts are available in the workflow run for 7 days." >> $GITHUB_STEP_SUMMARY
+
+      - name: Fail if any build failed
+        if: needs.test-build-binaries.result != 'success' || needs.test-build-python-wheels.result != 'success' || needs.test-build-sdist.result != 'success'
+        run: exit 1

{pysentry_rs-0.3.11 → pysentry_rs-0.3.12}/.github/workflows/release.yml

@@ -136,80 +136,26 @@ jobs:
 
   build-python-wheels:
     name: Build Python Wheels
-    runs-on: ${{ matrix.os }}
+    runs-on: ${{ matrix.osarch.os }}
     strategy:
-      fail-fast: false
       matrix:
-        include:
-          # x86_64 Linux
+        osarch:
           - os: ubuntu-latest
             target: x86_64-unknown-linux-gnu
-            python: "3.9"
           - os: ubuntu-latest
-            target: x86_64-unknown-linux-gnu
-            python: "3.10"
-          - os: ubuntu-latest
-            target: x86_64-unknown-linux-gnu
-            python: "3.11"
-          - os: ubuntu-latest
-            target: x86_64-unknown-linux-gnu
-            python: "3.12"
-          - os: ubuntu-latest
-            target: x86_64-unknown-linux-gnu
-            python: "3.13"
-          # macOS
-          - os: macos-latest
-            target: x86_64-apple-darwin
-            python: "3.9"
-          - os: macos-latest
-            target: x86_64-apple-darwin
-            python: "3.10"
-          - os: macos-latest
-            target: x86_64-apple-darwin
-            python: "3.11"
-          - os: macos-latest
-            target: x86_64-apple-darwin
-            python: "3.12"
+            target: aarch64-unknown-linux-gnu
+          - os: windows-latest
+            target: x86_64-pc-windows-msvc
           - os: macos-latest
             target: x86_64-apple-darwin
-            python: "3.13"
           - os: macos-latest
             target: aarch64-apple-darwin
-            python: "3.9"
-          - os: macos-latest
-            target: aarch64-apple-darwin
-            python: "3.10"
-          - os: macos-latest
-            target: aarch64-apple-darwin
-            python: "3.11"
-          - os: macos-latest
-            target: aarch64-apple-darwin
-            python: "3.12"
-          - os: macos-latest
-            target: aarch64-apple-darwin
-            python: "3.13"
-          # Windows
-          - os: windows-latest
-            target: x86_64-pc-windows-msvc
-            python: "3.9"
-          - os: windows-latest
-            target: x86_64-pc-windows-msvc
-            python: "3.10"
-          - os: windows-latest
-            target: x86_64-pc-windows-msvc
-            python: "3.11"
-          - os: windows-latest
-            target: x86_64-pc-windows-msvc
-            python: "3.12"
-          - os: windows-latest
-            target: x86_64-pc-windows-msvc
-            python: "3.13"
-
+        python: ["3.9", "3.10", "3.11", "3.12", "3.13", "3.14"]
     steps:
       - uses: actions/checkout@v4
 
       - name: Install system dependencies (Ubuntu)
-        if: startsWith(matrix.os, 'ubuntu')
+        if: startsWith(matrix.osarch.os, 'ubuntu')
         run: sudo apt-get update && sudo apt-get install -y libssl-dev pkg-config
 
       - name: Set up Python
@@ -220,19 +166,29 @@ jobs:
       - name: Install Rust
         uses: dtolnay/rust-toolchain@stable
 
+      - name: Set manylinux version
+        id: manylinux
+        if: startsWith(matrix.osarch.os, 'ubuntu')
+        run: |
+          if [[ "${{ matrix.osarch.target }}" == "aarch64-unknown-linux-gnu" ]]; then
+            echo "version=2_28" >> $GITHUB_OUTPUT
+          else
+            echo "version=auto" >> $GITHUB_OUTPUT
+          fi
+
       - name: Build wheels
         uses: PyO3/maturin-action@v1.49.4
         with:
           command: build
           args: --release --features python --out dist -i ${{ matrix.python }}
           sccache: "true"
-          manylinux: auto
-          target: ${{ matrix.target }}
+          manylinux: ${{ steps.manylinux.outputs.version || 'auto' }}
+          target: ${{ matrix.osarch.target }}
 
       - name: Upload wheels
         uses: actions/upload-artifact@v4
         with:
-          name: wheels-${{ matrix.os }}-${{ matrix.target }}-${{ matrix.python }}
+          name: wheels-${{ matrix.osarch.os }}-${{ matrix.osarch.target }}-${{ matrix.python }}
           path: dist/*.whl
 
   build-sdist:

{pysentry_rs-0.3.11 → pysentry_rs-0.3.12}/Cargo.lock

@@ -1154,7 +1154,7 @@ dependencies = [
 
 [[package]]
 name = "pysentry"
-version = "0.3.11"
+version = "0.3.12"
 dependencies = [
  "anyhow",
  "async-trait",

{pysentry_rs-0.3.11 → pysentry_rs-0.3.12}/Cargo.toml

@@ -1,6 +1,6 @@
 [package]
 name = "pysentry"
-version = "0.3.11"
+version = "0.3.12"
 edition = "2021"
 rust-version = "1.79"
 description = "Security vulnerability auditing for Python packages"

{pysentry_rs-0.3.11 → pysentry_rs-0.3.12}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: pysentry-rs
-Version: 0.3.11
+Version: 0.3.12
 Classifier: Development Status :: 4 - Beta
 Classifier: Intended Audience :: Developers
 Classifier: License :: OSI Approved :: GNU General Public License v3 (GPLv3)
@@ -78,7 +78,7 @@ This method:
 
 ### 📦 From PyPI (Python Package)
 
-For Python 3.9+ on Linux, macOS, and Windows:
+For Python 3.9-3.14 on Linux, macOS, and Windows:
 
 ```bash
 pip install pysentry-rs
@@ -129,20 +129,23 @@ The binary will be available at `target/release/pysentry`.
 
 ### Requirements
 
-- **For uvx**: Python 3.9+ and [uv](https://docs.astral.sh/uv/) installed
+- **For uvx**: Python 3.9-3.14 and [uv](https://docs.astral.sh/uv/) installed
 - **For binaries**: No additional dependencies
-- **For Python package**: Python 3.9+
+- **For Python package**: Python 3.9-3.14
 - **For Rust package and source**: Rust 1.79+
 
 ### Platform Support
 
-| Installation Method | Linux | macOS | Windows |
-| ------------------- | ----- | ----- | ------- |
-| uvx                 | ✅    | ✅    | ✅      |
-| PyPI (pip)          | ✅    | ✅    | ✅      |
-| Crates.io (cargo)   | ✅    | ✅    | ✅      |
-| GitHub Releases     | ✅    | ✅    | ✅      |
-| From Source         | ✅    | ✅    | ✅      |
+| Installation Method | Linux (x64) | Linux (ARM64) | macOS (x64) | macOS (ARM64) | Windows (x64) |
+| ------------------- | ----------- | ------------- | ----------- | ------------- | ------------- |
+| uvx                 | ✅          | ✅            | ✅          | ✅            | ✅            |
+| PyPI (pip)          | ✅          | ✅            | ✅          | ✅            | ✅            |
+| Crates.io (cargo)   | ✅          | ✅            | ✅          | ✅            | ✅            |
+| GitHub Releases     | ✅          | ✅            | ✅          | ✅            | ✅            |
+| From Source         | ✅          | ✅            | ✅          | ✅            | ✅            |
+
+**Supported Python Versions**: 3.9, 3.10, 3.11, 3.12, 3.13, 3.14
+**Supported Architectures**: x86_64 (x64), ARM64 (aarch64)
 
 
 ### CLI Command Names
@@ -302,7 +305,7 @@ Add PySentry to your `.pre-commit-config.yaml`:
 ```yaml
 repos:
   - repo: https://github.com/pysentry/pysentry-pre-commit
-    rev: v0.3.7
+    rev: v0.3.11
     hooks:
       - id: pysentry # default pysentry settings
 ```
@@ -312,7 +315,7 @@ repos:
 ```yaml
 repos:
   - repo: https://github.com/pysentry/pysentry-pre-commit
-    rev: v0.3.7
+    rev: v0.3.11
     hooks:
       - id: pysentry
         args: ["--sources", "pypa,osv", "--fail-on", "high"]

{pysentry_rs-0.3.11 → pysentry_rs-0.3.12}/README.md

@@ -53,7 +53,7 @@ This method:
 
 ### 📦 From PyPI (Python Package)
 
-For Python 3.9+ on Linux, macOS, and Windows:
+For Python 3.9-3.14 on Linux, macOS, and Windows:
 
 ```bash
 pip install pysentry-rs
@@ -104,20 +104,23 @@ The binary will be available at `target/release/pysentry`.
 
 ### Requirements
 
-- **For uvx**: Python 3.9+ and [uv](https://docs.astral.sh/uv/) installed
+- **For uvx**: Python 3.9-3.14 and [uv](https://docs.astral.sh/uv/) installed
 - **For binaries**: No additional dependencies
-- **For Python package**: Python 3.9+
+- **For Python package**: Python 3.9-3.14
 - **For Rust package and source**: Rust 1.79+
 
 ### Platform Support
 
-| Installation Method | Linux | macOS | Windows |
-| ------------------- | ----- | ----- | ------- |
-| uvx                 | ✅    | ✅    | ✅      |
-| PyPI (pip)          | ✅    | ✅    | ✅      |
-| Crates.io (cargo)   | ✅    | ✅    | ✅      |
-| GitHub Releases     | ✅    | ✅    | ✅      |
-| From Source         | ✅    | ✅    | ✅      |
+| Installation Method | Linux (x64) | Linux (ARM64) | macOS (x64) | macOS (ARM64) | Windows (x64) |
+| ------------------- | ----------- | ------------- | ----------- | ------------- | ------------- |
+| uvx                 | ✅          | ✅            | ✅          | ✅            | ✅            |
+| PyPI (pip)          | ✅          | ✅            | ✅          | ✅            | ✅            |
+| Crates.io (cargo)   | ✅          | ✅            | ✅          | ✅            | ✅            |
+| GitHub Releases     | ✅          | ✅            | ✅          | ✅            | ✅            |
+| From Source         | ✅          | ✅            | ✅          | ✅            | ✅            |
+
+**Supported Python Versions**: 3.9, 3.10, 3.11, 3.12, 3.13, 3.14
+**Supported Architectures**: x86_64 (x64), ARM64 (aarch64)
 
 
 ### CLI Command Names
@@ -277,7 +280,7 @@ Add PySentry to your `.pre-commit-config.yaml`:
 ```yaml
 repos:
   - repo: https://github.com/pysentry/pysentry-pre-commit
-    rev: v0.3.7
+    rev: v0.3.11
     hooks:
       - id: pysentry # default pysentry settings
 ```
@@ -287,7 +290,7 @@ repos:
 ```yaml
 repos:
   - repo: https://github.com/pysentry/pysentry-pre-commit
-    rev: v0.3.7
+    rev: v0.3.11
     hooks:
       - id: pysentry
         args: ["--sources", "pypa,osv", "--fail-on", "high"]

pysentry_rs-0.3.12/benchmarks/results/0.3.11.md

@@ -0,0 +1,141 @@
+# PySentry - pip-audit Benchmark Report
+
+**Generated:** 2025-10-01 17:03:50
+**Duration:** 1m 58.52s
+**Total Tests:** 20
+
+## Executive Summary
+
+**Overall Success Rate:** 100.0% (20/20 successful runs)
+
+### Small_Requirements Dataset - Cold Cache
+- **Fastest:** pysentry-pypi (0.251s) - 35.82x faster than slowest
+- **Memory Efficient:** pysentry-osv (9.73 MB) - 8.91x less memory than highest
+
+### Small_Requirements Dataset - Hot Cache
+- **Fastest:** pysentry-pypi (0.225s) - 35.73x faster than slowest
+- **Memory Efficient:** pysentry-osv (9.61 MB) - 9.75x less memory than highest
+
+### Large_Requirements Dataset - Cold Cache
+- **Fastest:** pysentry-pypi (0.725s) - 27.37x faster than slowest
+- **Memory Efficient:** pysentry-osv (10.55 MB) - 8.94x less memory than highest
+
+### Large_Requirements Dataset - Hot Cache
+- **Fastest:** pysentry-pypi (0.710s) - 22.73x faster than slowest
+- **Memory Efficient:** pysentry-osv (9.75 MB) - 8.22x less memory than highest
+
+## Test Environment
+
+- **Platform:** Linux-6.11.0-1018-azure-x86_64-with-glibc2.39
+- **Python Version:** 3.11.13
+- **CPU Cores:** 4
+- **Total Memory:** 15.62 GB
+- **Available Memory:** 14.68 GB
+
+## Performance Comparison
+
+### Small_Requirements Dataset - Cold Cache
+
+#### Execution Time Comparison
+
+| Tool Configuration | Execution Time | Relative Performance |
+|---------------------|---------------------|---------------------|
+| 🥇 pysentry-pypi | 0.251s | 1.00x |
+| 🥈 pysentry-osv | 0.800s | 3.18x |
+|  pysentry-all-sources | 1.105s | 4.40x |
+|  pysentry-pypa | 1.344s | 5.35x |
+|  pip-audit-default | 8.995s | 35.82x |
+
+#### Memory Usage Comparison
+
+| Tool Configuration | Peak Memory | Relative Performance |
+|---------------------|---------------------|---------------------|
+| 🥇 pysentry-osv | 9.73 MB | 1.00x |
+| 🥈 pysentry-pypi | 10.30 MB | 1.06x |
+|  pip-audit-default | 45.71 MB | 4.70x |
+|  pysentry-pypa | 60.87 MB | 6.26x |
+|  pysentry-all-sources | 86.62 MB | 8.91x |
+
+### Small_Requirements Dataset - Hot Cache
+
+#### Execution Time Comparison
+
+| Tool Configuration | Execution Time | Relative Performance |
+|---------------------|---------------------|---------------------|
+| 🥇 pysentry-pypi | 0.225s | 1.00x |
+| 🥈 pysentry-pypa | 0.693s | 3.08x |
+|  pysentry-osv | 0.781s | 3.47x |
+|  pysentry-all-sources | 0.819s | 3.64x |
+|  pip-audit-default | 8.033s | 35.73x |
+
+#### Memory Usage Comparison
+
+| Tool Configuration | Peak Memory | Relative Performance |
+|---------------------|---------------------|---------------------|
+| 🥇 pysentry-osv | 9.61 MB | 1.00x |
+| 🥈 pysentry-pypi | 10.67 MB | 1.11x |
+|  pysentry-pypa | 43.20 MB | 4.49x |
+|  pip-audit-default | 44.82 MB | 4.66x |
+|  pysentry-all-sources | 93.77 MB | 9.75x |
+
+### Large_Requirements Dataset - Cold Cache
+
+#### Execution Time Comparison
+
+| Tool Configuration | Execution Time | Relative Performance |
+|---------------------|---------------------|---------------------|
+| 🥇 pysentry-pypi | 0.725s | 1.00x |
+| 🥈 pysentry-pypa | 1.522s | 2.10x |
+|  pysentry-osv | 3.638s | 5.02x |
+|  pysentry-all-sources | 4.179s | 5.76x |
+|  pip-audit-default | 19.837s | 27.37x |
+
+#### Memory Usage Comparison
+
+| Tool Configuration | Peak Memory | Relative Performance |
+|---------------------|---------------------|---------------------|
+| 🥇 pysentry-osv | 10.55 MB | 1.00x |
+| 🥈 pysentry-pypi | 12.95 MB | 1.23x |
+|  pip-audit-default | 53.12 MB | 5.03x |
+|  pysentry-pypa | 61.15 MB | 5.80x |
+|  pysentry-all-sources | 94.30 MB | 8.94x |
+
+### Large_Requirements Dataset - Hot Cache
+
+#### Execution Time Comparison
+
+| Tool Configuration | Execution Time | Relative Performance |
+|---------------------|---------------------|---------------------|
+| 🥇 pysentry-pypi | 0.710s | 1.00x |
+| 🥈 pysentry-pypa | 1.130s | 1.59x |
+|  pysentry-osv | 3.954s | 5.57x |
+|  pysentry-all-sources | 4.199s | 5.91x |
+|  pip-audit-default | 16.134s | 22.73x |
+
+#### Memory Usage Comparison
+
+| Tool Configuration | Peak Memory | Relative Performance |
+|---------------------|---------------------|---------------------|
+| 🥇 pysentry-osv | 9.75 MB | 1.00x |
+| 🥈 pysentry-pypi | 12.74 MB | 1.31x |
+|  pip-audit-default | 47.41 MB | 4.86x |
+|  pysentry-pypa | 60.06 MB | 6.16x |
+|  pysentry-all-sources | 80.21 MB | 8.22x |
+
+## Detailed Analysis
+
+### Pysentry Performance
+
+- **Execution Time:** Avg: 1.630s, Min: 0.225s, Max: 4.199s
+
+- **Memory Usage:** Avg: 41.65 MB, Min: 9.61 MB, Max: 94.30 MB
+
+- **Success Rate:** 100.0% (16/16)
+
+### Pip-Audit Performance
+
+- **Execution Time:** Avg: 13.250s, Min: 8.033s, Max: 19.837s
+
+- **Memory Usage:** Avg: 47.77 MB, Min: 44.82 MB, Max: 53.12 MB
+
+- **Success Rate:** 100.0% (4/4)

{pysentry_rs-0.3.11 → pysentry_rs-0.3.12}/src/config.rs

@@ -662,3 +662,89 @@ fn default_http_retry_max_backoff() -> u64 {
 fn default_http_show_progress() -> bool {
     true
 }
+
+#[cfg(test)]
+mod tests {
+    use super::*;
+    use std::fs;
+    use tempfile::TempDir;
+
+    #[test]
+    fn test_config_load_from_file() {
+        let temp_dir = TempDir::new().unwrap();
+        let config_path = temp_dir.path().join(".pysentry.toml");
+
+        let config_content = r#"
+version = 1
+
+[defaults]
+format = "markdown"
+severity = "medium"
+fail_on = "low"
+
+[sources]
+enabled = ["pypa", "pypi", "osv"]
+
+[cache]
+enabled = false
+"#;
+
+        fs::write(&config_path, config_content).unwrap();
+
+        let loader = ConfigLoader::load_from_file(&config_path).unwrap();
+
+        assert_eq!(loader.config.defaults.format, "markdown");
+        assert_eq!(loader.config.defaults.severity, "medium");
+        assert_eq!(loader.config.defaults.fail_on, "low");
+        assert_eq!(loader.config.sources.enabled, vec!["pypa", "pypi", "osv"]);
+        assert!(!loader.config.cache.enabled);
+        assert!(loader.config_path.is_some());
+    }
+
+    #[test]
+    fn test_config_default_values() {
+        let config = Config::default();
+
+        assert_eq!(config.version, 1);
+        assert_eq!(config.defaults.format, "human");
+        assert_eq!(config.defaults.severity, "low");
+        assert_eq!(config.defaults.fail_on, "medium");
+        assert_eq!(config.sources.enabled, vec!["pypa"]);
+        assert!(config.cache.enabled);
+    }
+
+    #[test]
+    fn test_config_validation() {
+        let mut config = Config::default();
+
+        // Valid config should pass
+        assert!(config.validate().is_ok());
+
+        // Invalid format
+        config.defaults.format = "invalid".to_string();
+        assert!(config.validate().is_err());
+        config.defaults.format = "human".to_string();
+
+        // Invalid severity
+        config.defaults.severity = "invalid".to_string();
+        assert!(config.validate().is_err());
+        config.defaults.severity = "low".to_string();
+
+        // Invalid source
+        config.sources.enabled = vec!["invalid".to_string()];
+        assert!(config.validate().is_err());
+        config.sources.enabled = vec!["pypa".to_string()];
+
+        // Empty sources
+        config.sources.enabled = vec![];
+        assert!(config.validate().is_err());
+    }
+
+    #[test]
+    fn test_config_loader_with_no_config() {
+        // Test that loader works even when no config file exists
+        let loader = ConfigLoader::load_with_options(true).unwrap();
+        assert!(loader.config_path.is_none());
+        assert_eq!(loader.config.defaults.format, "human");
+    }
+}

{pysentry_rs-0.3.11 → pysentry_rs-0.3.12}/src/parsers/requirements.rs

@@ -314,6 +314,80 @@ impl RequirementsParser {
         Ok(filtered_dependencies)
     }
 
+    /// Parse include directive (-r or -c) from a requirements line
+    fn parse_include_directive(line: &str) -> Option<(&str, &str)> {
+        let trimmed = line.trim();
+
+        // Handle -r and --requirement (for requirements includes)
+        if let Some(path) = trimmed.strip_prefix("-r ") {
+            return Some(("r", path.trim()));
+        }
+        if let Some(path) = trimmed.strip_prefix("--requirement ") {
+            return Some(("r", path.trim()));
+        }
+        if let Some(path) = trimmed.strip_prefix("--requirement=") {
+            return Some(("r", path.trim()));
+        }
+
+        // Handle -c and --constraint (for constraint files - same issue)
+        if let Some(path) = trimmed.strip_prefix("-c ") {
+            return Some(("c", path.trim()));
+        }
+        if let Some(path) = trimmed.strip_prefix("--constraint ") {
+            return Some(("c", path.trim()));
+        }
+        if let Some(path) = trimmed.strip_prefix("--constraint=") {
+            return Some(("c", path.trim()));
+        }
+
+        None
+    }
+
+    /// Resolve relative -r/-c directive paths to absolute paths
+    fn resolve_requirements_includes(content: &str, source_file: &Path) -> Result<String> {
+        let parent_dir = source_file.parent().ok_or_else(|| {
+            AuditError::other(format!(
+                "Cannot get parent directory for: {}",
+                source_file.display()
+            ))
+        })?;
+
+        let mut resolved = String::new();
+
+        for line in content.lines() {
+            if let Some((directive_type, rel_path)) = Self::parse_include_directive(line) {
+                // Resolve relative path to absolute path
+                let include_path = parent_dir.join(rel_path);
+
+                match include_path.canonicalize() {
+                    Ok(abs_path) => {
+                        let flag = if directive_type == "r" { "-r" } else { "-c" };
+                        debug!("Resolved {} {} -> {}", flag, rel_path, abs_path.display());
+                        resolved.push_str(&format!("{} {}\n", flag, abs_path.display()));
+                    }
+                    Err(e) => {
+                        // If file doesn't exist, keep original path and let UV handle the error
+                        // This preserves existing error messages from UV
+                        warn!(
+                            "Could not resolve include path '{}' from {}: {}. Using original path.",
+                            rel_path,
+                            source_file.display(),
+                            e
+                        );
+                        resolved.push_str(line);
+                        resolved.push('\n');
+                    }
+                }
+            } else {
+                // Not an include directive, keep line as-is
+                resolved.push_str(line);
+                resolved.push('\n');
+            }
+        }
+
+        Ok(resolved)
+    }
+
     /// Combine multiple explicit requirements files into single content
     async fn combine_explicit_files(&self, files: &[PathBuf]) -> Result<String> {
         let mut combined = String::new();
@@ -329,8 +403,11 @@ impl RequirementsParser {
                 ))
             })?;
 
+            // Resolve relative -r/-c directives to absolute paths
+            let resolved_content = Self::resolve_requirements_includes(&content, file)?;
+
             combined.push_str(&format!("# From: {}\n", file.display()));
-            combined.push_str(&content);
+            combined.push_str(&resolved_content);
             combined.push('\n');
         }
 
@@ -506,4 +583,184 @@ click>=8.0.0
         assert!(result.contains(&PackageName::new("flask")));
         assert!(result.contains(&PackageName::new("click")));
     }
+
+    #[test]
+    fn test_parse_include_directive() {
+        // Test -r directive
+        assert_eq!(
+            RequirementsParser::parse_include_directive("-r ../requirements.txt"),
+            Some(("r", "../requirements.txt"))
+        );
+
+        // Test --requirement directive
+        assert_eq!(
+            RequirementsParser::parse_include_directive("--requirement base.txt"),
+            Some(("r", "base.txt"))
+        );
+
+        // Test --requirement= directive
+        assert_eq!(
+            RequirementsParser::parse_include_directive("--requirement=../requirements.txt"),
+            Some(("r", "../requirements.txt"))
+        );
+
+        // Test -c constraint directive
+        assert_eq!(
+            RequirementsParser::parse_include_directive("-c constraints.txt"),
+            Some(("c", "constraints.txt"))
+        );
+
+        // Test --constraint directive
+        assert_eq!(
+            RequirementsParser::parse_include_directive("--constraint ../constraints.txt"),
+            Some(("c", "../constraints.txt"))
+        );
+
+        // Test --constraint= directive
+        assert_eq!(
+            RequirementsParser::parse_include_directive("--constraint=constraints.txt"),
+            Some(("c", "constraints.txt"))
+        );
+
+        // Test with extra whitespace
+        assert_eq!(
+            RequirementsParser::parse_include_directive("  -r   ../requirements.txt  "),
+            Some(("r", "../requirements.txt"))
+        );
+
+        // Test non-directive lines
+        assert_eq!(
+            RequirementsParser::parse_include_directive("requests>=2.25.0"),
+            None
+        );
+        assert_eq!(
+            RequirementsParser::parse_include_directive("# Comment"),
+            None
+        );
+        assert_eq!(RequirementsParser::parse_include_directive(""), None);
+    }
+
+    #[test]
+    fn test_resolve_requirements_includes() {
+        use std::fs;
+        use tempfile::TempDir;
+
+        // Create temporary directory structure
+        let temp_dir = TempDir::new().unwrap();
+        let project_path = temp_dir.path();
+
+        // Create requirements files
+        let base_req = project_path.join("requirements.txt");
+        fs::write(&base_req, "flask==2.0.0\n").unwrap();
+
+        // Create dev subdirectory
+        let dev_dir = project_path.join("dev");
+        fs::create_dir(&dev_dir).unwrap();
+        let dev_req = dev_dir.join("requirements.txt");
+
+        // Test content with relative path
+        let content_with_include = "-r ../requirements.txt\npytest==8.4.2\n";
+
+        let resolved =
+            RequirementsParser::resolve_requirements_includes(content_with_include, &dev_req)
+                .unwrap();
+
+        // Should contain absolute path to requirements.txt
+        assert!(resolved.contains("-r"));
+        assert!(resolved.contains("requirements.txt"));
+        assert!(resolved.contains("pytest==8.4.2"));
+
+        // Verify the path was made absolute
+        let expected_abs_path = base_req.canonicalize().unwrap();
+        assert!(resolved.contains(&expected_abs_path.display().to_string()));
+    }
+
+    #[test]
+    fn test_resolve_requirements_includes_constraint_files() {
+        use std::fs;
+        use tempfile::TempDir;
+
+        let temp_dir = TempDir::new().unwrap();
+        let project_path = temp_dir.path();
+
+        // Create constraint file
+        let constraints = project_path.join("constraints.txt");
+        fs::write(&constraints, "flask<3.0\n").unwrap();
+
+        // Create dev subdirectory
+        let dev_dir = project_path.join("dev");
+        fs::create_dir(&dev_dir).unwrap();
+        let dev_req = dev_dir.join("requirements.txt");
+
+        let content = "-c ../constraints.txt\nflask>=2.0\n";
+
+        let resolved =
+            RequirementsParser::resolve_requirements_includes(content, &dev_req).unwrap();
+
+        // Should contain absolute path to constraints.txt
+        assert!(resolved.contains("-c"));
+        assert!(resolved.contains("constraints.txt"));
+        assert!(resolved.contains("flask>=2.0"));
+
+        let expected_abs_path = constraints.canonicalize().unwrap();
+        assert!(resolved.contains(&expected_abs_path.display().to_string()));
+    }
+
+    #[test]
+    fn test_resolve_requirements_includes_preserves_regular_lines() {
+        use std::fs;
+        use tempfile::TempDir;
+
+        let temp_dir = TempDir::new().unwrap();
+        let test_file = temp_dir.path().join("requirements.txt");
+        fs::write(&test_file, "").unwrap();
+
+        let content = r#"
+# This is a comment
+requests>=2.25.0
+flask[async]>=2.0,<3.0
+
+click==8.0.0
+"#;
+
+        let resolved =
+            RequirementsParser::resolve_requirements_includes(content, &test_file).unwrap();
+
+        // All lines should be preserved
+        assert!(resolved.contains("# This is a comment"));
+        assert!(resolved.contains("requests>=2.25.0"));
+        assert!(resolved.contains("flask[async]>=2.0,<3.0"));
+        assert!(resolved.contains("click==8.0.0"));
+    }
+
+    #[test]
+    fn test_resolve_requirements_includes_multiple_directives() {
+        use std::fs;
+        use tempfile::TempDir;
+
+        let temp_dir = TempDir::new().unwrap();
+        let project_path = temp_dir.path();
+
+        // Create referenced files
+        let base_req = project_path.join("base.txt");
+        fs::write(&base_req, "flask==2.0.0\n").unwrap();
+
+        let security_req = project_path.join("security.txt");
+        fs::write(&security_req, "cryptography>=3.0\n").unwrap();
+
+        let dev_req = project_path.join("dev.txt");
+
+        let content = "-r base.txt\n-r security.txt\npytest==8.4.2\n";
+
+        let resolved =
+            RequirementsParser::resolve_requirements_includes(content, &dev_req).unwrap();
+
+        // Both includes should be resolved to absolute paths
+        let base_abs = base_req.canonicalize().unwrap();
+        let security_abs = security_req.canonicalize().unwrap();
+
+        assert!(resolved.contains(&format!("-r {}", base_abs.display())));
+        assert!(resolved.contains(&format!("-r {}", security_abs.display())));
+        assert!(resolved.contains("pytest==8.4.2"));
+    }
 }

{pysentry_rs-0.3.11 → pysentry_rs-0.3.12}/src/python.rs

@@ -65,17 +65,23 @@ fn run_cli(args: Vec<String>) -> PyResult<i32> {
 
         match cli.command {
             None => {
-                let audit_args = cli.audit_args;
+                let (merged_audit_args, config) = match cli.audit_args.load_and_merge_config() {
+                    Ok(result) => result,
+                    Err(e) => {
+                        eprintln!("Configuration error: {e}");
+                        return Ok(1);
+                    }
+                };
 
-                let cache_dir = audit_args.cache_dir.clone().unwrap_or_else(|| {
+                let http_config = config.as_ref().map(|c| c.http.clone()).unwrap_or_default();
+
+                let cache_dir = merged_audit_args.cache_dir.clone().unwrap_or_else(|| {
                     dirs::cache_dir()
                         .unwrap_or_else(std::env::temp_dir)
                         .join("pysentry")
                 });
 
-                let http_config = crate::config::HttpConfig::default();
-
-                match audit(&audit_args, &cache_dir, http_config).await {
+                match audit(&merged_audit_args, &cache_dir, http_config).await {
                     Ok(exit_code) => Ok(exit_code),
                     Err(e) => {
                         eprintln!("Error: Audit failed: {e}");