It’s an approach — Another would be to review all the existing formats and design something that works for their needs. Or to pick one with the “least worse” trade offs.
PEP 665’s research involved PDM, Poetry and also other ecosystems (npm, cargo); and I don’t remember more off the top of my head. Fulfilling the needs of most of such projects is a useful thing IMO.
Yes, but I think we shouldn’t. We should instead do what Brett is trying to achieve now and satisfy use cases, and the format will be shaped by those. The format is an implementation detail and we should not put too much emphasis on it (which is what PEP 665 did).
This PEP is about the lock file format, so I don’t think that format is an implementation detail. I was just using PDM as an example though because I like its layout, and found it easy to add the extra stuff I think is needed.
Well sure, but that’s not the first step and we’re not there yet. It’s like writing a database schema without business logic.
Here is some use cases we have
Thoth use AI to curate python dependencies trees criteria. (TL;DR: a fancy dependency resolver)
Currently, we only support Pipfile / requirements.txt
Depending on the form a lock file would take, we could be both producer and consumer.
Relevant in our context:
Supporting that sort of stuff (customizing the dependency tree depending on device availability) is of interest to us. However given 1 this can’t happen at build time ; unless for example the lockfile record all possibilities and we have a builder creating several container images.
We’re also currently on something else, “Custom Notebook Image”, aka, creating a container image to serve a jupyter notebook from a source provided by the user. The source being:
.ipynb)In that case, a standard lock file seems like it would be a good intermediary representation to which we would convert every source so that the build part of the pipeline is the same. For now, we’re going to use a Pipfile.lock or the output of pip-compile --generate-hashes, we’re still working on it.
That’s for the use cases.
I’m also going to be the new maintainer of micropipenv. In my opinion, it tries to solve the same problem that this discussion, which is the main reason I’m participating (I think it was already mentioned on the PEP 665 thread). I think it could become a first implementation, as either a converter from other format, an “universal installer” as PEP 665 was calling them, or both.
I’ve reached out to our users on the subject to see if there is other use cases which could guide the discussion.