tempnet 1.0.0rc2__tar.gz

tempnet-1.0.0rc2/.github/workflows/development.yml

@@ -0,0 +1,157 @@
+name: Development Workflow
+
+on:
+  pull_request:
+    types: [opened, synchronize, reopened, edited, ready_for_review]
+    branches:
+      - main
+
+permissions:
+  pull-requests: write
+  contents: write
+
+jobs:
+  determine-python-version:
+    runs-on: ubuntu-24.04
+    outputs:
+      version: ${{ steps.pyver.outputs.version }}
+    steps:
+      - uses: actions/checkout@v5
+
+      - name: Determine minimum Python version from pyproject.toml
+        id: pyver
+        run: |
+          py_req=$(sed -n 's/^[[:space:]]*requires-python[[:space:]]*=[[:space:]]*"\(.*\)".*/\1/p' pyproject.toml | head -n1)
+          py_min=$(echo "$py_req" | sed -n 's/.*>=[[:space:]]*\([0-9]\+\.[0-9]\+\).*/\1/p')
+          if [ -z "$py_min" ]; then
+            echo "Could not parse minimum Python version from requires-python='$py_req'" >&2
+            exit 1
+          fi
+          echo "version=$py_min" >> "$GITHUB_OUTPUT"
+          echo "Resolved minimum Python: $py_min"
+
+  setup-and-test:
+    if: github.event.pull_request.draft == false
+    runs-on: ubuntu-24.04
+    needs: [determine-python-version]
+    steps:
+      - uses: actions/checkout@v5
+
+      - name: Install Intel MKL
+        run: |
+          sudo apt-get update
+          sudo apt-get -y install intel-mkl
+
+      - name: Install uv
+        uses: astral-sh/setup-uv@v5
+        with:
+          enable-cache: true
+          cache-dependency-glob: "pyproject.toml"
+
+      - name: Set up Python
+        run: uv python install ${{ needs.determine-python-version.outputs.version }}
+
+      - name: Install project and dev dependencies
+        run: |
+          uv venv --python ${{ needs.determine-python-version.outputs.version }} .venv
+          source .venv/bin/activate
+          uv pip install -e . --group dev
+
+      - name: Build wheel
+        run: uv build
+
+      - name: Upload wheel
+        uses: actions/upload-artifact@v4
+        with: 
+          name: wheel
+          path: dist
+          retention-days: 1
+
+      - name: Lint with ruff
+        run: uv run ruff check --select=ALL --output-format=github src/
+        continue-on-error: true
+
+      - name: Tests without memory tracking
+        run: |
+          uv run pytest --junitxml=junit/test-results.xml --cov=tempnet --durations=0 -k 'not _memory' \
+            || { code=$?; [ $code -eq 5 ] && exit 0 || exit $code; }
+        env:
+          COVERAGE_FILE: ".coverage.no_memory"
+
+      - name: Store coverage file
+        if: always()
+        uses: actions/upload-artifact@v4
+        with:
+          name: coverage-no_memory
+          path: .coverage.no_memory
+          include-hidden-files: true
+
+  test-memory:
+    if: github.event.pull_request.draft == false
+    runs-on: ubuntu-24.04
+    needs: [determine-python-version]
+    steps:
+      - uses: actions/checkout@v5
+
+      - name: Install Intel MKL
+        run: |
+          sudo apt-get update
+          sudo apt-get -y install intel-mkl
+
+      - name: Install uv
+        uses: astral-sh/setup-uv@v5
+        with:
+          enable-cache: true
+          cache-dependency-glob: "pyproject.toml"
+
+      - name: Set up Python
+        run: uv python install ${{ needs.determine-python-version.outputs.version }}
+
+      - name: Install project and dev dependencies
+        run: |
+          uv venv --python ${{ needs.determine-python-version.outputs.version }} .venv
+          source .venv/bin/activate
+          uv pip install -e . --group dev
+
+      - name: Tests memory tracking
+        run: |
+          uv run pytest --junitxml=junit/test-results.xml --cov=tempnet --durations=0 --memray --most-allocations=0 -k '_memory' \
+            || { code=$?; [ $code -eq 5 ] && exit 0 || exit $code; }
+        env:
+          COVERAGE_FILE: ".coverage.memory"
+
+      - name: Store coverage file
+        if: always()
+        uses: actions/upload-artifact@v4
+        with:
+          name: coverage-memory
+          path: .coverage.memory
+          include-hidden-files: true
+
+  coverage:
+    if: always() && github.event.pull_request.draft == false
+    name: combine-coverage
+    runs-on: ubuntu-24.04
+    needs: [setup-and-test, test-memory]
+    permissions:
+      pull-requests: write
+      contents: write
+    steps:
+      - uses: actions/checkout@v5
+      - uses: actions/download-artifact@v4
+        with:
+          pattern: coverage-*
+          merge-multiple: true
+      - name: Coverage comment
+        id: coverage_comment
+        uses: py-cov-action/python-coverage-comment-action@v3
+        with:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          MERGE_COVERAGE_FILES: true
+
+      - name: Store Pull Request comment
+        uses: actions/upload-artifact@v4
+        if: steps.coverage_comment.outputs.COMMENT_FILE_WRITTEN == 'true'
+        with:
+          name: python-coverage-comment-action
+          path: python-coverage-comment-action.txt

tempnet-1.0.0rc2/.github/workflows/release.yml

@@ -0,0 +1,105 @@
+# Release workflow: builds a wheel + sdist, creates a GitHub Release with
+# auto-generated notes, and publishes to PyPI via OIDC trusted publishing.
+# The PyPI publish step is gated on the ``pypi`` GitHub environment, which
+# is configured (in repo settings) to require manual reviewer approval.
+#
+# Tag conventions (no ``v`` prefix; SemVer-style):
+#   1.2.3            -- final release
+#   1.2.3-rc1        -- pre-releases (alpha / beta / rc; PEP 440 normalises
+#                       ``1.2.3-rc1`` to ``1.2.3rc1`` for the wheel version)
+#
+# Prerequisites (configured outside this workflow):
+#   * PyPI trusted publisher: workflow=release.yml, environment=pypi
+#   * GitHub environment ``pypi`` with required reviewers
+#   * Tag protection rule for the patterns below
+
+name: Release
+
+on:
+  push:
+    tags:
+      - '[0-9]+.[0-9]+.[0-9]+'
+      - '[0-9]+.[0-9]+.[0-9]+-[abr]*'
+
+permissions:
+  contents: read
+
+jobs:
+  guard_main:
+    # Refuse to release from a tag that does not point at a commit on main.
+    # Prevents accidental releases from feature branches or stale tags.
+    name: Verify tag is on main
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+      - name: Check tag commit is an ancestor of origin/main
+        run: |
+          git fetch origin main
+          if ! git merge-base --is-ancestor "$GITHUB_SHA" origin/main; then
+            echo "::error::Tag commit $GITHUB_SHA is not on origin/main; refusing to release."
+            exit 1
+          fi
+
+  build:
+    name: Build artifacts
+    needs: guard_main
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          # hatch-vcs needs the full history (or at least tags) to resolve
+          # the version dynamically.
+          fetch-depth: 0
+
+      - name: Build wheel and sdist
+        run: pipx run build
+
+      - uses: actions/upload-artifact@v4
+        with:
+          name: dist-${{ github.ref_name }}
+          path: dist/*
+
+  create_github_release:
+    name: Create GitHub Release
+    needs: build
+    runs-on: ubuntu-latest
+    permissions:
+      contents: write
+    steps:
+      - uses: actions/download-artifact@v4
+        with:
+          pattern: dist-*
+          path: dist
+          merge-multiple: true
+
+      - name: Create release
+        uses: softprops/action-gh-release@v2
+        with:
+          generate_release_notes: true
+          files: dist/*
+          # Mark pre-releases (anything with a/b/rc in the tag) appropriately
+          # so PyPI/users see the right channel.
+          prerelease: ${{ contains(github.ref_name, 'a') || contains(github.ref_name, 'b') || contains(github.ref_name, 'rc') }}
+
+  publish_pypi:
+    name: Publish to PyPI
+    needs: create_github_release
+    runs-on: ubuntu-latest
+    environment:
+      name: pypi
+      url: https://pypi.org/p/tempnet
+    permissions:
+      id-token: write       # OIDC for trusted publishing
+      attestations: write   # sigstore provenance attestations
+    steps:
+      - uses: actions/download-artifact@v4
+        with:
+          pattern: dist-*
+          path: dist
+          merge-multiple: true
+
+      - uses: pypa/gh-action-pypi-publish@release/v1
+        with:
+          attestations: true

tempnet-1.0.0rc2/.github/workflows/status.yml

@@ -0,0 +1,118 @@
+name: Status
+
+on:
+  push:
+    branches:
+      - main
+
+jobs:
+  determine-python-version:
+    runs-on: ubuntu-24.04
+    outputs:
+      min-version: ${{ steps.pyver.outputs.version }}
+    steps:
+      - uses: actions/checkout@v5
+
+      - name: Determine minimum Python version from pyproject.toml
+        id: pyver
+        run: |
+          py_req=$(sed -n 's/^[[:space:]]*requires-python[[:space:]]*=[[:space:]]*"\(.*\)".*/\1/p' pyproject.toml | head -n1)
+          py_min=$(echo "$py_req" | sed -n 's/.*>=[[:space:]]*\([0-9]\+\.[0-9]\+\).*/\1/p')
+          if [ -z "$py_min" ]; then
+            echo "Could not parse minimum Python version from requires-python='$py_req'" >&2
+            exit 1
+          fi
+          echo "version=$py_min" >> "$GITHUB_OUTPUT"
+          echo "Resolved minimum Python: $py_min"
+
+  unit-tests:
+    runs-on: ubuntu-24.04
+    needs: [determine-python-version]
+    strategy:
+      matrix:
+        pythonV: ["3.10", "3.11", "3.12", "3.13", "3.14"]
+      fail-fast: false
+    steps:
+      - uses: actions/checkout@v5
+        with:
+          lfs: 'true'
+          submodules: recursive
+
+      - name: Install Intel MKL
+        run: |
+          sudo apt-get update
+          sudo apt-get -y install intel-mkl
+
+      - name: Install uv
+        uses: astral-sh/setup-uv@v5
+        with:
+          enable-cache: true
+          cache-dependency-glob: "pyproject.toml"
+
+      - name: Set up Python
+        run: uv python install ${{ matrix.pythonV }}
+
+      - name: Install project and dev dependencies
+        # Using `uv venv` + `uv pip install -e .` instead of `uv sync`:
+        # `uv sync`'s ephemeral build env mis-resolves Python.h for git-URL
+        # deps (e.g. stochmat). `uv pip install -e .` builds against the
+        # active venv directly and works.
+        run: |
+          uv venv --python ${{ matrix.pythonV }} .venv
+          source .venv/bin/activate
+          uv pip install -e . --group dev
+
+      - name: Lint with ruff
+        run: |
+          source .venv/bin/activate
+          uv run ruff check --select=ALL --output-format=github src/
+        continue-on-error: true
+
+      - name: Tests
+        run: |
+          source .venv/bin/activate
+          uv run pytest --junitxml=junit/test-results.xml --cov=tempnet --durations=0
+        env:
+          COVERAGE_FILE: ".coverage.all"
+
+      - name: Store coverage file
+        if: matrix.pythonV == needs.determine-python-version.outputs.min-version
+        uses: actions/upload-artifact@v4
+        with:
+          name: coverage-all
+          path: .coverage.all
+          include-hidden-files: true
+
+      # Update per-version pass/fail badge in gist
+      - name: Update Python ${{ matrix.pythonV }} status badge
+        if: always()
+        # pinned to v1.8.0
+        uses: schneegans/dynamic-badges-action@0e50b8bad39e7e1afd3e4e9c2b7dd145fad07501
+        with:
+          auth: ${{ secrets.GIST_SECRET }}
+          gistID: ${{ vars.STATUS_GIST_ID }}
+          filename: python-${{ matrix.pythonV }}.json
+          label: "Python ${{ matrix.pythonV }}"
+          message: ${{ job.status == 'success' && 'passing' || 'failing' }}
+          color: ${{ job.status == 'success' && 'brightgreen' || 'red' }}
+
+  coverage-badge:
+    name: coverage-badge
+    runs-on: ubuntu-24.04
+    needs: [unit-tests]
+    if: always()
+    permissions:
+      contents: write
+    steps:
+      - uses: actions/checkout@v5
+      - uses: actions/download-artifact@v4
+        id: download
+        with:
+          pattern: coverage*
+          merge-multiple: true
+
+      - name: Update coverage badge
+        uses: py-cov-action/python-coverage-comment-action@v3
+        with:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          MERGE_COVERAGE_FILES: true

tempnet-1.0.0rc2/.github/workflows/test_release.yml

@@ -0,0 +1,62 @@
+# Manual TestPyPI dry-run. Trigger via the Actions tab; the branch picker
+# in the workflow_dispatch UI selects which ref to build from. Useful for
+# validating the build and publish pipeline before cutting a real release tag.
+#
+# Prerequisites (configured outside this workflow):
+#   * TestPyPI trusted publisher: workflow=test_release.yml, environment=testpypi
+#   * GitHub environment ``testpypi`` (no reviewers required)
+
+name: Test release (TestPyPI)
+
+on:
+  workflow_dispatch: {}
+
+permissions:
+  contents: read
+
+jobs:
+  build:
+    name: Build artifacts
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+
+      - name: Build wheel and sdist
+        # TestPyPI rejects PEP 440 local version segments (the ``+gSHA``
+        # suffix hatch-vcs appends on non-tag commits). Strip it here --
+        # and only here -- so PyPI releases and local dev installs are
+        # unaffected.
+        env:
+          SETUPTOOLS_SCM_LOCAL_SCHEME: no-local-version
+        run: pipx run build
+
+      - uses: actions/upload-artifact@v4
+        with:
+          name: dist-testrelease
+          path: dist/*
+
+  publish_testpypi:
+    name: Publish to TestPyPI
+    needs: build
+    runs-on: ubuntu-latest
+    environment:
+      name: testpypi
+      url: https://test.pypi.org/p/tempnet
+    permissions:
+      id-token: write
+    steps:
+      - uses: actions/download-artifact@v4
+        with:
+          pattern: dist-*
+          path: dist
+          merge-multiple: true
+
+      - uses: pypa/gh-action-pypi-publish@release/v1
+        with:
+          repository-url: https://test.pypi.org/legacy/
+          # TestPyPI rejects re-uploads of an existing version; allow the
+          # workflow to succeed when the version already exists so repeated
+          # dry-runs from the same commit don't fail noisily.
+          skip-existing: true

tempnet-1.0.0rc2/.gitignore

@@ -0,0 +1,209 @@
+# hatching version file
+_version.py
+# Byte-compiled / optimized / DLL files
+__pycache__/
+*.py[codz]
+*$py.class
+
+# C extensions
+*.so
+
+# Distribution / packaging
+.Python
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+wheels/
+share/python-wheels/
+*.egg-info/
+.installed.cfg
+*.egg
+MANIFEST
+
+# PyInstaller
+#  Usually these files are written by a python script from a template
+#  before PyInstaller builds the exe, so as to inject date/other infos into it.
+*.manifest
+*.spec
+
+# Installer logs
+pip-log.txt
+pip-delete-this-directory.txt
+
+# Unit test / coverage reports
+htmlcov/
+.tox/
+.nox/
+.coverage
+.coverage.*
+.cache
+nosetests.xml
+coverage.xml
+*.cover
+*.py.cover
+.hypothesis/
+.pytest_cache/
+cover/
+
+# Translations
+*.mo
+*.pot
+
+# Django stuff:
+*.log
+local_settings.py
+db.sqlite3
+db.sqlite3-journal
+
+# Flask stuff:
+instance/
+.webassets-cache
+
+# Scrapy stuff:
+.scrapy
+
+# Sphinx documentation
+docs/_build/
+
+# PyBuilder
+.pybuilder/
+target/
+
+# Jupyter Notebook
+.ipynb_checkpoints
+
+# IPython
+profile_default/
+ipython_config.py
+
+# pyenv
+#   For a library or package, you might want to ignore these files since the code is
+#   intended to run in multiple environments; otherwise, check them in:
+# .python-version
+
+# pipenv
+#   According to pypa/pipenv#598, it is recommended to include Pipfile.lock in version control.
+#   However, in case of collaboration, if having platform-specific dependencies or dependencies
+#   having no cross-platform support, pipenv may install dependencies that don't work, or not
+#   install all needed dependencies.
+#Pipfile.lock
+
+# UV
+#   Similar to Pipfile.lock, it is generally recommended to include uv.lock in version control.
+#   This is especially recommended for binary packages to ensure reproducibility, and is more
+#   commonly ignored for libraries.
+#uv.lock
+
+# poetry
+#   Similar to Pipfile.lock, it is generally recommended to include poetry.lock in version control.
+#   This is especially recommended for binary packages to ensure reproducibility, and is more
+#   commonly ignored for libraries.
+#   https://python-poetry.org/docs/basic-usage/#commit-your-poetrylock-file-to-version-control
+#poetry.lock
+#poetry.toml
+
+# pdm
+#   Similar to Pipfile.lock, it is generally recommended to include pdm.lock in version control.
+#   pdm recommends including project-wide configuration in pdm.toml, but excluding .pdm-python.
+#   https://pdm-project.org/en/latest/usage/project/#working-with-version-control
+#pdm.lock
+#pdm.toml
+.pdm-python
+.pdm-build/
+
+# pixi
+#   Similar to Pipfile.lock, it is generally recommended to include pixi.lock in version control.
+#pixi.lock
+#   Pixi creates a virtual environment in the .pixi directory, just like venv module creates one
+#   in the .venv directory. It is recommended not to include this directory in version control.
+.pixi
+
+# PEP 582; used by e.g. github.com/David-OConnor/pyflow and github.com/pdm-project/pdm
+__pypackages__/
+
+# Celery stuff
+celerybeat-schedule
+celerybeat.pid
+
+# SageMath parsed files
+*.sage.py
+
+# Environments
+.env
+.envrc
+.venv
+env/
+venv/
+ENV/
+env.bak/
+venv.bak/
+
+# Spyder project settings
+.spyderproject
+.spyproject
+
+# Rope project settings
+.ropeproject
+
+# mkdocs documentation
+/site
+
+# mypy
+.mypy_cache/
+.dmypy.json
+dmypy.json
+
+# Pyre type checker
+.pyre/
+
+# pytype static type analyzer
+.pytype/
+
+# Cython debug symbols
+cython_debug/
+
+# PyCharm
+#  JetBrains specific template is maintained in a separate JetBrains.gitignore that can
+#  be found at https://github.com/github/gitignore/blob/main/Global/JetBrains.gitignore
+#  and can be added to the global gitignore or merged into this file.  For a more nuclear
+#  option (not recommended) you can uncomment the following to ignore the entire idea folder.
+#.idea/
+
+# Abstra
+# Abstra is an AI-powered process automation framework.
+# Ignore directories containing user credentials, local state, and settings.
+# Learn more at https://abstra.io/docs
+.abstra/
+
+# Visual Studio Code
+#  Visual Studio Code specific template is maintained in a separate VisualStudioCode.gitignore 
+#  that can be found at https://github.com/github/gitignore/blob/main/Global/VisualStudioCode.gitignore
+#  and can be added to the global gitignore or merged into this file. However, if you prefer, 
+#  you could uncomment the following to ignore the entire vscode folder
+# .vscode/
+
+# Ruff stuff:
+.ruff_cache/
+
+# PyPI configuration file
+.pypirc
+
+# Cursor
+#  Cursor is an AI-powered code editor. `.cursorignore` specifies files/directories to
+#  exclude from AI features like autocomplete and code analysis. Recommended for sensitive data
+#  refer to https://docs.cursor.com/context/ignore-files
+.cursorignore
+.cursorindexingignore
+
+# Marimo
+marimo/_static/
+marimo/_lsp/
+__marimo__/