I can probably figure it out, but I assumed some other project has already solved this problem before lol

So your choice to do cross compiling, or raising self hosted runners with different arch

I don't remember python supporting cross compiling

That means self hosted runners is the only choice may be

U are looking not at GH then

Gh should act as trigger/status reporter at most

well I see projects like https://github.com/jirutka/setup-alpine that set up a qemu chroot

just need to figure out how to get multiple python versions installed in there...

maybe I'll run my multi-python-version tests (on native arch) and my multi-arch-tests (on whatever the default alpine python version is) separately

and not bother trying to do many-pythons and many-archs at the same time

currently doing this, seems to be working quite nicely

What do you guys think about competitors of Windows Terminal? Recently Ghostty became stable. Do you think somebody should make a term emulator for Windows that rivals wt?

There is probably no better windows terminal than Git Bash terminal coming with git https://git-scm.com/downloads

Hard to disagree with that any more than I do.

As far as competitors, it's just another form of "X editor is better". Use the one that provides the interface and features you need.

I found Windows Terminal + WSL the best I can get from (painful) current Windows OS. Initially I had to get familiar with the fact that same application could exists in both environments e.g. git and git.exe

before Windows Terminal I needed a terminal for git, another for k8s, another for WSL (V1), another for PowerShell, etc

We need more of them. Windows terminal doesn't work in a 100% offline environment (connect via VMware Horizons)

i used Conemu for a long time at work

https://conemu.github.io/

hey

Yeah basically I think there are less good options to go for.

I have an API in fastapi that I'm sending to a VPS and using Docker to start, but I'm having a problem that is reaching (100%), I didn't do anything to reach such a large %, when I used htop I came across this

/usr/bin/python3 -c from multiprocessing.spawn import spawn_main; spawn_main(tracker_fd=11, pipe_handle=*) -- multiprocessing-fork

it creates several processes

Hi to everyone, I develop a tool that can help people to start a new Python package from scratch: https://github.com/MatteoGuadrini/psp

hey all, have a quick question. I'm looking to send a few thousand emails (over the course of a few weeks) from my company account to potential partners. Code seems easy enough but I'm looking for some insights on whether this is going to work or is even a good idea (I don't want to screw anything up for my company). Basically have to decide 1) whether to use SMTP or 2) Microsoft Graph or 3) some sort of paid service (outside of python).

Main goal is to have this be coming from my email, and for their inboxes to not detect anything 'spammy' (Currently, I've been doing this email outreach manually, but it's time consuming and I'd like to reach more people). IDK maybe this is a better question for an IT Discord? Grateful for any help or insights

SMTP
rate limited against programmatic spam. few emails rarely it could handle, but few thousand is already a question, with timeframew over 2 weeks may be it will be able. Question of reliability. May be it will be able to handle few thousand emails. May be u will get banned potentially

Microsoft Graph
not aware about it

some sort of paid service (outside of python).
Email sending is known to be the most difficult thing to do (Very strictly regulated area 😅), so... things like paid service Sendgrid, or AWS SES are recommended

Okay, thank you!

Does anyone know if it's possible to include the only the source code of a method somehow using mkdocstrings?

you can customize the options to exclude everything but the source code.

Ha, didn't even think of that myself, but it's true, you can hide the heading, the signature, the class bases, and all docstring sections, leaving only the source

im wondering - anyone aware of a tool that allows to develop on the most modern syntax and generate older syntax versions of the code for distribution

never heard of one

Like the opposite of modernize?

I naively think it should be fairly easy if you don't need to go below 3.10.

i make excessive use of generis, new style type aliases & co - its a pain to use them in the python 3.9 compatible forms - in particular when one cant use the typing future as well

i heard about such feature only in Java so far, apperently it should be possible to compile java even most modern version to be running from oldest runtimes 🤔
and i heard about same feature in javascript common, they compile to oldest verison for more cross compatibility between browsers.

Never heard about such feature in python before.

psycopg2-binary distributes already compiled version of a library, making it easy to install. may be smth along side this road may be present to be less sensitive to python version

shipping wheels of a compiled lib is slightly different from transpiling to a older version of the python language

when i tried to see definition of a code in psycopg2-binary, the code was not reachable.
I just assume that it is may be compiled in a such way that it may be no longer sensitive to typing presence
just a theory

Obviously it will be not as good as just stripping of types or making python in general compatible to lower version 😅

all compilings are highly likely CPU/OS sensitive

try to find may be library for Type stripping. i found some but they were all outdated.
As funny option u could may be even write your own, that just removes types 😅

that could make compatible to lower python version too

at a cost of a somewhat nasty result of lesser library self documentation for those older python versions

Its implemented in case natively

Actively unhelpful suggestions are kinda rude

I didn't take that as "actively unhelpful"; I took it as "you probably don't want to go to this much effort, but perhaps you do, so here's another idea"

The first suggestion was a c implemented library

The next suggestion was practically just to break the code

Zero effort and zero background knowledge

Just dumping broken suggestions i have to throw out directly after researching

It is weird something like Babel doesn't exist for python

There's less ecosystem pressure for something like it

Most preexisting libraries just keep up with the minimum

Im currently starting a experiment to replace the config system of pytest and is like to use 3.12 syntax a lot

I think also 3.12 syntax doesn't down level well anyways

And there's no pyupgrade for it either

You'd have to spit out a pyi file and a py file with all the extra closures

I am building a chat app and I am using Docker to make it. I have three services in my Docker Compose file: client, server, and caddy.

client is a React app that generates static files under dist/ in the container. And server is a Python server that is the backend of the chat app, so it's a websocket server. And caddy is a web server. I would like to share the generated dist/ folder from the client container with my caddy container so that I can serve it. How do I do that?

Or is my way of doing a chat app just wrong or smth? In that case, I'd like to learn the proper way of doing it

I guess I should mention that it's just a site-project that I'm doing to learn the basics; so it's not supposed to be actually a thing where I need to care about production use

I suspect you want to use docker "volumes". Can you share your code via github?

Anyone here proficient enough to help walk me through adding another piece of code to an existing lambda script so I don't mess up what's already in it haha. I want to learn but I'm new and honestly can't understand how to do what's needed.

https://github.com/eeriemyxi/rorica

I pushed some bare-bones code (I started working on it today). Everything works fine when running export RORICA_TARGET=develop && docker compose up --build --watch but if the target is production, it won't work, since I don't know how to serve the generated dist/ files in another container.

I tried looking at the documentation for Docker's volumes and I found it pretty complicated, like IDK what's subpath, source, target and how to adapt it to my case. Could you have share some examples?

ooh! Only saw this now; will look

docker's docs are complete but they never give enough examples, or background info.

Here's a toy example ```
volumes:
postgres_data: {}

services:
bash:
image: bash:latest
command: "bash -c 'while true; do date; sleep 1; done'"
volumes:
- postgres_data:/postgres/data

postgres:
image: postgres:17
# only for initializing the db
environment:
POSTGRES_DB: woteva
POSTGRES_PASSWORD: postgres
volumes:
- postgres_data:/var/lib/postgresql/data

if you put that into docker-compose.yml, then type docker-compose up, it'll start running. Then in a second window, type docker compose exec -it bash bash which gets you a shell in the running bash container.

Now type ls /postgres/data/ in that shell, and you'll see the database files from the other container.

I would say there is a room for improvement by changing strategy to using Staged docker building

FROM node stuff as build
You build to dist folder
FROM caddy as run
COPY files from build to here
And then u could serve files directly technically

Reverse proxy instruction can be serving the rest of requests to back from same domain

That could potentially make the production smaller by eliminating javascript runtime entirely but I feel like it's more limiting and kind of not obvious on how the compose file would work. rn it reverse proxies the server at :80/api but if I put the web server in the client container then I suppose I would need to have that reverse proxy code in the client container too?

https://github.com/eeriemyxi/rorica/blob/f6eff1cf57fa99c1ccb86cf092a397b64b513554/docker-compose.yml
seems to work, but there's something I'm curious about... if I change the data on that volume from one container, what would happen to that volume in other containers? Is it basically a mount point, or does it copy things at build time or smth?

but if it just copies things at build time, then how does it decide which container's volume to copy to other containers?

it's a mount point.

try it and see

using pytest for the first time, saw in a conference talk that it shows the values of variables being compared in assert expressions

    def test_auth_login():
        a = 1
        b = 2
>       assert a == b
E       AssertionError

tests\test_auth.py:37: AssertionError

do I have to do something to enable that ?

ahh found it

-l, --showlocals Show locals in tracebacks (disabled by default)

lmao it also has a
--pastebin=mode Send failed|all info to bpaste.net pastebin service
so convenient

I remember django having that feature on error pages, blew my mind ages ago

Typer (terminal command framework) enables this feature by default and I hate it.

I don't like my entire stack being printed to my terminal when there's an error.

It wouldn't be so bad if typer automatically detected any package installed in site-packages as internal and hid the variables

"your code crashed, but since it crashed inside sqlalchemy and it printed every single variable in scope, your code's traceback has flown off the buffer and is unavailable."

$ pytest 
============================================================= test session starts ==============================================================
platform linux -- Python 3.10.12, pytest-8.3.4, pluggy-1.5.0
rootdir: /home/naa/repos/pet_projects/experiments/pytest_test
configfile: pytest.ini
collected 1 item                                                                                                                               

tests.py F                                                                                                                               [100%]

=================================================================== FAILURES ===================================================================
_______________________________________________________________ test_auth_login ________________________________________________________________

    def test_auth_login():
        a = 1
        b = 2
>       assert a == b
E       assert 1 == 2

tests.py:4: AssertionError
=========================================================== short test summary info ============================================================
FAILED tests.py::test_auth_login - assert 1 == 2
============================================================== 1 failed in 0.01s =============================================================

As far as i am aware it works by default (and having confirmed on experiment)

just have pytest.ini

[pytest]
python_files = tests.py test_*.py *_tests.py *_test.py

to find test files

and run command pytest

The assertion rewriting should do it

hmm, didn't happen for me; which version of pytest are you on ?
I am on v8.3.2

I have been running it like this
python -m pytest --disable-warnings -k "auth_login" -v --no-header

rewriting ?

🤔

(.venv) naa@naa-MS-7C89:~/repos/pet_projects/experiments/pytest_test$ pytest --version
pytest 8.3.4

at linux

thanks ! I upgraded to 8.3.4 and it works now !

rate my requirements installation

5/10, who's blood is that??

What's wrong with just putting a pip install -r requirements.txt in your instructions?

its just an annoying step

also venv creation

i found out pip install will stop you on linux if you are outside a venv

Not by default

It's a setting

if you use the pip that comes with the distro packages
also, depends on the distro

0/10. You should use pip-tools

Yes it will

But also the displayed code here won't help

No that's the default behavior.

looks good but dev oriented, i want the user to run script and don't worry about it

Then use pipx or uv

I make the venv above this for that reason, the script will launch itself again from the venv

PIPX and UV support inline script metadata.
https://packaging.python.org/en/latest/specifications/inline-script-metadata/

oh this looks nice

Something that's useful is using a shebang #!/usr/bin/env -S pipx run

if a python script is converted to exe does the machine it will be executed on need to have python installed ?

no, that's the whole point

vaguely similar to Tailscale

anybody use localstack for setup local development for their team project?

SyntaxError: invalid syntax

KeyboardInterrupt

/opt/anaconda3/bin/python /Users/ravi/RAVISBOTS/main.py
File "<stdin>", line 1
/opt/anaconda3/bin/python /Users/ravi/RAVISBOTS/main.py
^
SyntaxError: invalid syntax

what does this mean

it means you typed a file name into the python repl

and python doesn't know what to do with it

if you're trying to run that main.py file, do these things:

• exit the python repl by typing exit
• type /opt/anaconda3/bin/python /Users/ravi/RAVISBOTS/main.py at the shell prompt

shells know how to run progams; python doesn't

ahoy

what about it?

A tool mimic aws infras for local develop use only.

I meant, what did you want to ask about it?

Hey y'all, can someone kindly point me to the appropriate channel to ask about UV?

This would be that channel.

@crimson spruce ah ok cool, I thought so, but I wanted to make sure first. I have a basic github action script in place for downloading deps and running mypy on push to main, but I've been searching the internet for other examples of an actions using uv. Do you or anyone have any examples you could send?

I've already looked through their docs

astral have their own discord, fwiw: https://discord.gg/23qM5UGs

oh right on, thank you

I'm asking about the feasibility of whether anyone has applied this in real-world project?

we are completely satisfied with just using Docker Compose for dev env 🤔

despite being very AWS centric

i am hesitatnt to think about using aws localstack for dev env, encountered it before

idea of getting overly extra attached to AWS is not really welcome i think

we try to do the opposite, of moving more towards cloud agnostic direction

and for this reason move from AWS ECS to Kubernetes

Thanks for your sharing, @rapid sparrow .
The only issue I have with AWS is that we're so attached to AWS infrastructure that everything goes through a private subnet.
My first approach is to create an environment with AWS public subnets for everything, such as ECS, API Gateway, and Lambda.
My second thought is about using LocalStack.
Otherwise, we can't even develop further with the production infrastructure.

Good to know that you overcome any issue with k8s.

to ensure that our AWS infrastructure is working/things are Quality Assured to work
We do have Staging (and now also Uat) environment raised infra in AWS

that ensures we have some env to develop besides production 😄

Since Staging infra is maintained by infra devs, average skill level needed to interact with it is very low for devs and non devs

If the production environment requires everything to be in a private subnet except for some services,
would you replicate the same private subnet setup for UAT/staging, or would you make everything public for development purposes?

Production and Staging both run in private subnets.
In addition, Production runs on AWS WAF by default all allowed, and some black list of stuff is forbidden to be accessed
while Staging has AWS WAF by default all forbidden, and whitelist of Office Ips, our wireguard VPN is allowed to access it.

In order to access Private Subnet infrastructure (both in Prod and staging), we use Bastion approach / having EC2 instance raised that is publicly accessable that can tunnel forward us to allowed elements of private infrastructure (u need to specify which objects are accessable there somewhere at its networking stuff)
in order to get access to this Bastion service, u need to add your SSH key into Terraform code of its creation.
For security reasons we eventually were able to configure were you can use this EC2 instance only to forward tunnel traffic, but not able to just SSH and walk around in it itself

Bastion approach is default thing recommended for AWS infra, and some books recommend it as well to access AWS ECS/EC2 and other private infra.
We use it to access at least AWS ECS,RDS and redises

Your wise knowledge enlightens me, Darkwind.
I now know what to learn and what to do for my projects. You have saved me many days.

I'll try harder to become more skillful and contribute to this community like you.

Hi Guys, i work with GENAI and LLM's to build assistants and chatbots. Now my manager is asking me to provide some good automation ideas using GENAI. I have already implemented my ideas at work which benefitted the team but it seems they need more, could anyone of you please tell me if you have any ideas or how did u automate ur work like deploying dockers, github cicd or code automation, anything....Thanks in advance!

please don't post the same message in multiple channels

Guys , I need to build a tool for resetting passwords and change mails from outlook of discord accounts

are you resetting passwords on outlook via discord, or discord via outlook?

Is there a Pylint rule for accessing a non-existant attribute on an instance? Like if my class does not define self.blah anywhere, and i use instance.blah somewhere, it warns me?

perhaps E0237 - https://pylint.pycqa.org/en/latest/user_guide/checkers/features.html

or W0201

hmm those are specific to assigning a non-existant attribute, which is also useful, but I'm looking for just accessing a non-existant attribute in my current case

Traceback (most recent call last):
  File "/home/cherny/test.py", line 9, in <module>
    main()
  File "/home/cherny/test.py", line 6, in main
    test.invalid
AttributeError: 'Test' object has no attribute 'invalid'
➜  ~ uvx pylint test.py 
************* Module test
test.py:1:0: C0114: Missing module docstring (missing-module-docstring)
test.py:1:0: C0115: Missing class docstring (missing-class-docstring)
test.py:1:0: R0903: Too few public methods (0/2) (too-few-public-methods)
test.py:4:0: C0116: Missing function or method docstring (missing-function-docstring)
test.py:6:4: W0104: Statement seems to have no effect (pointless-statement)
test.py:6:4: E1101: Instance of 'Test' has no 'invalid' member (no-member)

-----------------------------------
Your code has been rated at 0.00/10

➜  ~ cat test.py 
class Test:
    pass

def main():
    test = Test()
    test.invalid

if __name__ == "__main__":
    main()```

E1101

heh yeah I just found it, I guess it was harder to find because it uses "member" instead of "attribute"

thank you very much!

which tools are yall using for version management? changelog entries, bumping pyproject.toml, creating a github release and all the accompanying jazz?

Github Actions 🙂

bumping version => using Env var from GH in setup.py

generating changelogs, wrote my own tool https://github.com/darklab8/autogit

https://github.com/darklab8/autogit/blob/master/.github/workflows/build.yml
Example in a single Workflow that does it all (not for python though)

@rugged chasm did you figure out the rest of your docker thing?

nope

I tried a different approach and can't get it to work

it has some permissions errors that I don't understand

I figured out how to start a container correctly with the normal endstone/endstone but now I want to use a different work dir and a different bedrock_server (-s) dir but it says it has some permission errors

this is my code:

    def start_container(self, playerxuid):
        folder_path = f"/home/skyblock/server_instances/{playerxuid}"
        print(f"Starting container '{folder_path}'")
        self.logger.info(f"Starting container '{folder_path}'")
        client = docker.from_env()
        container = client.containers.run(
            "endstone/endstone",
            detach=True,
            name=f"sbi_{playerxuid}",
            ports={"19150/udp": None},
            volumes={
                folder_path: {"bind": f"/server_instances/{playerxuid}/", "mode": "rw"}
            },
            working_dir=f"/home/skyblock/server_instances/{playerxuid}",
            command=f"endstone -y -s /home/skyblock/server_instances/{playerxuid}/"
        )

[2025-01-18 19:21:33.057 INFO] [LinuxBootstrap] Loading index from the remote server... [2025-01-18 19:21:33.082 ERROR] [endstone._internal.bootstrap] [Errno 13] Permission denied: '/home/skyblock/server_instances/(my name)/tmp9ilyjrfp' Traceback (most recent call last): File "/usr/local/lib/python3.12/site-packages/endstone/_internal/bootstrap/__init__.py", line 26, in wrapper return func(*args, **kwargs) ^^^^^^^^^^^^^^^^^^^^^ File "/usr/local/lib/python3.12/site-packages/endstone/_internal/bootstrap/__init__.py", line 73, in cli exit_code = bootstrap.run() ^^^^^^^^^^^^^^^ File "/usr/local/lib/python3.12/site-packages/endstone/_internal/bootstrap/base.py", line 199, in run self._install() File "/usr/local/lib/python3.12/site-packages/endstone/_internal/bootstrap/base.py", line 162, in _install self._download(self.server_path) File "/usr/local/lib/python3.12/site-packages/endstone/_internal/bootstrap/base.py", line 79, in _download with tempfile.TemporaryFile(dir=dst) as f: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ File "/usr/local/lib/python3.12/tempfile.py", line 677, in TemporaryFile file = _io.open(dir, mode, buffering=buffering, ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ File "/usr/local/lib/python3.12/tempfile.py", line 670, in opener fd, name = _mkstemp_inner(dir, prefix, suffix, flags, output_type) ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ File "/usr/local/lib/python3.12/tempfile.py", line 256, in _mkstemp_inner fd = _os.open(file, flags, 0o600) ^^^^^^^^^^^^^^^^^^^^^^^^^^^^ PermissionError: [Errno 13] Permission denied: '/home/skyblock/server_instances/(my name)/tmp9ilyjrfp'

and that's the error

FROM endstone/endstone
COPY bedrock_server /home/endstone/bedrock_server
USER root
RUN chown -R endstone /home/endstone/bedrock_server
USER endstone

looks like the endstone user in the container lacks permissions for /home/skyblock

@rugged chasm

no now i'm using again the normal endstone docker image

it looks like this https://github.com/EndstoneMC/endstone/blob/main/Dockerfile

i think

okay, well in either case, https://github.com/EndstoneMC/endstone/blob/main/Dockerfile#L87-88

https://github.com/EndstoneMC/endstone/blob/main/Dockerfile#L87-L88

Dockerfile lines 87 to 88

# Switch to non-root user
USER endstone```

the endstone user doesn't have the permissions it needs for /home/skyblock/server_instances/(my name)/tmp9ilyjrfp

so what do I do? change it to root?

I would go back to using the image from the custom Dockerfile, and update that custom Dockerfile to grant the endstone user the perms it needs.

how do I do that?

there's an example in the custom dockerfile you had before.

you mean USER root?

right.
in a linux system, the root user is basically god
and when you have a docker container, everything is done by the root user by default, unless you use a USER statement to switch to a different one.

and when you have a USER statement, all subsequent statements are by that user, unless you switch again with another USER statement

and whichever USER it is last is the one that does whatever the image does when you run it

ah okay

so just instead of USER endstone

I do USER root?

you need to switch back to root, grand endstone the perms it needs, and then switch back to endstone

wut

see here

how do I do that?

using root before FROM endstone/endstone and then back to USER endstone?

I think you can figure it out

😭

I'm saying that because I believe in you and because you'll learn more if you make the final connection

not to be confused with the rainbow connection

@rugged chasm how's it coming along?

i am playing the forest currently with a friend i am gonna try later

nice
I like being in forests

https://github.com/Zaloog/blueutil-tui

If anyone wants a tool to control bluetooth easily from the terminal (macos only due to dependency on blueutil)

uvx --from blueutil-tui btui

I can't bring it to work

why isn't ```docker
FROM endstone/endstone

USER root

COPY bedrock_server /home/endstone/bedrock_server

RUN chown -R endstone /home/endstone/bedrock_server

USER endstone

it still says permission denied for that work folder

please always show the whole error message--don't summarize it

Okay give me a sec

[2025-01-18 23:02:20.711 INFO] [LinuxBootstrap] Loading index from the remote server... [2025-01-18 23:02:21.061 ERROR] [endstone._internal.bootstrap] [Errno 13] Permission denied: '/home/skyblock/server_instances/VictorJu4751/tmpnijkjx3o' Traceback (most recent call last): File "/usr/local/lib/python3.12/site-packages/endstone/_internal/bootstrap/__init__.py", line 26, in wrapper return func(*args, **kwargs) ^^^^^^^^^^^^^^^^^^^^^ File "/usr/local/lib/python3.12/site-packages/endstone/_internal/bootstrap/__init__.py", line 73, in cli exit_code = bootstrap.run() ^^^^^^^^^^^^^^^ File "/usr/local/lib/python3.12/site-packages/endstone/_internal/bootstrap/base.py", line 199, in run self._install() File "/usr/local/lib/python3.12/site-packages/endstone/_internal/bootstrap/base.py", line 162, in _install self._download(self.server_path) File "/usr/local/lib/python3.12/site-packages/endstone/_internal/bootstrap/base.py", line 79, in _download with tempfile.TemporaryFile(dir=dst) as f: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ File "/usr/local/lib/python3.12/tempfile.py", line 677, in TemporaryFile file = _io.open(dir, mode, buffering=buffering, ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ File "/usr/local/lib/python3.12/tempfile.py", line 670, in opener fd, name = _mkstemp_inner(dir, prefix, suffix, flags, output_type) ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ File "/usr/local/lib/python3.12/tempfile.py", line 256, in _mkstemp_inner fd = _os.open(file, flags, 0o600) ^^^^^^^^^^^^^^^^^^^^^^^^^^^^ PermissionError: [Errno 13] Permission denied: '/home/skyblock/server_instances/VictorJu4751/tmpnijkjx3o'

@rugged chasm how do you think you can modify the Dockerfile to grant the required permissions for '/home/skyblock/server_instances/redacted/tmpnijkjx3o'?

Uhm

Changing the permissions for that folder?

Using root?

yes

Root?

what do you think RUN chown -R endstone /home/endstone/bedrock_server does?

Makes user endstone to the owner of that folder?

yes

so what do you need to add to the Dockerfile?

So you are telling me if I do RUN chown -R endstone /home/skyblock/server_instances it'll work?

try it.

show me the updated Dockerfile before you run it.

Ok i am turning my pc on just for this again

turning your PC?

ah yes

surely turning on your PC is a small price to pay for free help. (and it doesn't go to me.)

But isn't that just in the container?

the permission error is happening in the container, is it not?

No

what OS is your computer?

debian

Not my pc but where I am running this

do you get the error while trying to build the image, or when you run it?

When running it

what command do you use to run it?

endstone -y -s /home/skyblock/server_instances/{playername}/

that can't be it. it has to start with docker run

I'm starting the container with python

    def start_container(self, playerxuid):
        folder_path = f"/home/skyblock/server_instances/{playerxuid}"
        print(f"Starting container '{folder_path}'")
        self.logger.info(f"Starting container '{folder_path}'")
        client = docker.from_env()
        container = client.containers.run(
            "my-endstone",
            detach=True,
            name=f"sbi_{playerxuid}",
            ports={"19150/udp": None},
            volumes={
                folder_path: {"bind": f"/server_instances/{playerxuid}/", "mode": "rw"}
            },
            working_dir=f"/home/skyblock/server_instances/{playerxuid}",
            command=f"endstone -y -s /home/skyblock/server_instances/{playerxuid}/"
        )

okay, so the "command that starts the container" is the whole thing client.containers.run( ), not just the command= part.

yep

can you show the updated Dockerfile?

I didn't try with the updated one

wait let me try

Please show the updated Dockerfile before trying to build it.

FROM endstone/endstone

USER root

COPY bedrock_server /home/endstone/bedrock_server

RUN chown -R endstone /home/endstone/bedrock_server

RUN chown -R endstone /home/skyblock/server_instances

USER endstone

okay, go ahead and try building that image and running it.

ok

oh

oh?

` => ERROR [4/4] RUN chown -R endstone /home/skyblock/server_instances 0.7s

[4/4] RUN chown -R endstone /home/skyblock/server_instances:
0.164 chown: cannot access '/home/skyblock/server_instances': No such file or directory

Dockerfile:9

7 | RUN chown -R endstone /home/endstone/bedrock_server
8 |
9 | >>> RUN chown -R endstone /home/skyblock/server_instances
10 |
11 | USER endstone

ERROR: failed to solve: process "/bin/sh -c chown -R endstone /home/skyblock/server_instances" did not complete successfully: exit code: 1`

maybe just do RUN chown -R endstone /home/

if /home/skyblock gets created when the container starts, hopefully endstone will already have perms for it

I want to use the system directory /home/skyblock/server_instances instead of a directory inside the container because I need to copy stored data from another directory into the container before starting Endstone. When the container stops, the data should be stored back to the system directory and closed if not in use.

FROM endstone/endstone
USER root
COPY bedrock_server /home/endstone/bedrock_server
RUN setfacl -R -d -m u:endstone:rwx /home
USER endstone

try this instead.

build that image and try running your python code to run the image; if you get an error at either point, show the whole entire error message.

okay thanks

error

` => ERROR [3/3] RUN setfacl -R -d -m u:endstone:rwx /home 0.4s

[3/3] RUN setfacl -R -d -m u:endstone:rwx /home:
0.159 /bin/sh: 1: setfacl: not found

Dockerfile:4

2 | USER root
3 | COPY bedrock_server /home/endstone/bedrock_server
4 | >>> RUN setfacl -R -d -m u:endstone:rwx /home
5 | USER endstone

ERROR: failed to solve: process "/bin/sh -c setfacl -R -d -m u:endstone:rwx /home" did not complete successfully: exit code: 127`

ry said something about entrypoints

hold on.

im holding on very tight

first do docker run --rm -it --entrypoint /bin/bash my-endstone and see if you can run these commands

apt install acl
setfacl -R -d -m u:endstone:rwx /home

ok

endstone@a4208adb8de0:~$ apt install acl setfacl -R -d -m u:endstone:rwx /home E: Could not open lock file /var/lib/dpkg/lock-frontend - open (13: Permission denied) E: Unable to acquire the dpkg frontend lock (/var/lib/dpkg/lock-frontend), are you root? bash: setfacl: command not found

oh okay. get out of the container and do docker run --rm -it --entrypoint /bin/bash --user root my-endstone

it's the same but with --user root

then do the two commands again

root@f398c2149c78:/home/endstone# apt install acl setfacl -R -d -m u:endstone:rwx /home Reading package lists... Done Building dependency tree... Done Reading state information... Done E: Unable to locate package acl bash: setfacl: command not found

apt update
apt install -y acl
setfacl -R -d -m u:endstone:rwx /home

try that

ok worked

no error

all three?

yep

okay. don't leave the container yet; try su endstone

it should say endstone@f398c2149c78:/home/endstone#

yes

try mkdir spamspam

did

and the spamspam directory is there?

yes

now

it wasn't there before

great. so we just need to bake these instructions into the dockerfile

what's that doing?

FROM endstone/endstone
USER root
COPY bedrock_server /home/endstone/bedrock_server
RUN apt update && \
    apt install -y acl && \
    setfacl -R -d -m u:endstone:rwx /home
USER endstone

so then rebuild the image and try running the python program

this is something I do a lot: enter the container with --entrypoint /bin/bash, figure out the bash commands that fix the problem, and put them in the Dockerfile.

ok ok ok

yes yes yes

I'll try running it

nah that's crazy it doesn't work

[2025-01-19 00:07:58.582 ERROR] [endstone._internal.bootstrap] [Errno 13] Permission denied: '/home/skyblock/server_instances/VictorJu4751/tmpchimt1fn' Traceback (most recent call last): File "/usr/local/lib/python3.12/site-packages/endstone/_internal/bootstrap/__init__.py", line 26, in wrapper return func(*args, **kwargs) ^^^^^^^^^^^^^^^^^^^^^ File "/usr/local/lib/python3.12/site-packages/endstone/_internal/bootstrap/__init__.py", line 73, in cli exit_code = bootstrap.run() ^^^^^^^^^^^^^^^ File "/usr/local/lib/python3.12/site-packages/endstone/_internal/bootstrap/base.py", line 199, in run self._install() File "/usr/local/lib/python3.12/site-packages/endstone/_internal/bootstrap/base.py", line 162, in _install self._download(self.server_path) File "/usr/local/lib/python3.12/site-packages/endstone/_internal/bootstrap/base.py", line 79, in _download with tempfile.TemporaryFile(dir=dst) as f: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ File "/usr/local/lib/python3.12/tempfile.py", line 677, in TemporaryFile file = _io.open(dir, mode, buffering=buffering, ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ File "/usr/local/lib/python3.12/tempfile.py", line 670, in opener fd, name = _mkstemp_inner(dir, prefix, suffix, flags, output_type) ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ File "/usr/local/lib/python3.12/tempfile.py", line 256, in _mkstemp_inner fd = _os.open(file, flags, 0o600) ^^^^^^^^^^^^^^^^^^^^^^^^^^^^ PermissionError: [Errno 13] Permission denied: '/home/skyblock/server_instances/VictorJu4751/tmpchimt1fn'

wtf

What type of degree do you need to understand this program it's insane why isn't it just working

@rugged chasm try this command

docker run -it --rm \
    -v /home/skyblock/server_instances/player42:/server_instances/player42/:rw \
    -w /home/skyblock/server_instances/player42 \
    --entrypoint /bin/bash \
    my-endstone

and then endstone? It asks me if I want to download the bedrock server and if I say yes it says the exact same thing

see if you can mess with files in /home/skyblock/server_instances/player42

I can't create a folder in there with SFTP

it says permission denied

I wonder if the problem is that Docker doesn't have permission to write to the file system at the mount point

c:

docker run -it --rm \
    -w /home/skyblock/server_instances/player42 \
    --entrypoint /bin/bash \
    my-endstone

see if you can run endstone -y -s /home/skyblock/server_instances/player42/ in there

endstone@67cca49361b4:/home/skyblock/server_instances/player42$ endstone -y -s /home/skyblock/server_instances/player42/ [2025-01-19 00:18:24.722 INFO] [LinuxBootstrap] Loading index from the remote server... [2025-01-19 00:18:24.897 ERROR] [endstone._internal.bootstrap] [Errno 13] Permission denied: '/home/skyblock/server_instances/player42/tmptyxcvh9o' Traceback (most recent call last): File "/usr/local/lib/python3.12/site-packages/endstone/_internal/bootstrap/__init__.py", line 26, in wrapper return func(*args, **kwargs) ^^^^^^^^^^^^^^^^^^^^^ File "/usr/local/lib/python3.12/site-packages/endstone/_internal/bootstrap/__init__.py", line 73, in cli exit_code = bootstrap.run() ^^^^^^^^^^^^^^^ File "/usr/local/lib/python3.12/site-packages/endstone/_internal/bootstrap/base.py", line 199, in run self._install() File "/usr/local/lib/python3.12/site-packages/endstone/_internal/bootstrap/base.py", line 162, in _install self._download(self.server_path) File "/usr/local/lib/python3.12/site-packages/endstone/_internal/bootstrap/base.py", line 79, in _download with tempfile.TemporaryFile(dir=dst) as f: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ File "/usr/local/lib/python3.12/tempfile.py", line 677, in TemporaryFile file = _io.open(dir, mode, buffering=buffering, ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ File "/usr/local/lib/python3.12/tempfile.py", line 670, in opener fd, name = _mkstemp_inner(dir, prefix, suffix, flags, output_type) ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ File "/usr/local/lib/python3.12/tempfile.py", line 256, in _mkstemp_inner fd = _os.open(file, flags, 0o600) ^^^^^^^^^^^^^^^^^^^^^^^^^^^^ PermissionError: [Errno 13] Permission denied: '/home/skyblock/server_instances/player42/tmptyxcvh9o'

I bet making facebook was easier >:c

try this

docker run -it --rm \
    -w /home/skyblock/server_instances/player42 \
    --user root \
    --entrypoint /bin/bash \
    my-endstone

WORKED!!!!!!!!!!!!!!!!!!!!!!!!

okay
so the problem is with the endstone user in the container

there might be a security risk with running it as root in the container

why security risk what could happen

idk, I do AI, not cybersecurity

damn

I think if you just add user='root' to the client.contaner.run function in python, it will work
you can instead delete the last USER endstone from the dockerfile and rebuild it.

hopefully, someone will come along and tell you why running it in the container as root is a bad idea, and what the solution is.

...

but why is player42 empty

idk what you mean

the folder /home/skyblock/server_instances/player42

it's empty

can you show the updated python code?

I didn't update it I just used this

that's not a final solution.
that command removes the mounted volume.

ok I'll try with user="root"

it works

but the port is 19132

and still nothing in player42

I can't take this anymore I am gonna sleep now

good night and thank you for your help

I am coming back tomorrow

I am developing a CLI application in Python and I am struggling with an issue I don't fully understand. The CLI is installed via pip via a console_scripts entry point declared in setup.py. The CLI works as expected when used in a command prompt (Windows), but when it's being called by another application (in my case Unreal Engine), it keeps on showing a Window for a brief moment. I can share the CPP code that is responsible for running the process in the host application if that helps, but I was wondering if anyone knows what's up. Also let me know if there is a better channel to post this question.

I believe it is smth windows specific regarding CLI application executions.

My cli applications in Linux all execute normally in terminals
But when executed in windows not from terminal, they show cli windows GUI temporally opened too for a time of execution

U need Smth of the level: how to run cli application silently in windows

It is not python specific issue at all I believe

https://stackoverflow.com/questions/12010103/how-do-i-launch-a-program-from-command-line-without-opening-a-new-cmd-window
This stack overflow I believe contains the answers

Flag /b looks like a solution

Or optionally design your program to work through network calls instead of cli calls

Thanks for the reply @rapid sparrow. The thing I find confusing, and that made me suspicious of Python, is the fact that the host application (Unreal Engine) is running git.exe the exact same way, and that does not open a window.

Hey everyone!
I'm trying to understand why when I run the following make command on a build of a Docker Image I always get the error of poetry not installed event though poetry is installed correclty.

This is my makefile section trying to execute:

    @echo "Installing dependencies with Poetry..."
    @source "$(VENV)/bin/activate" && poetry install || (echo "Error installing dependencies. Ensure Poetry is installed and a pyproject.toml file exists." && exit 1)
    @echo "Dependencies installed."
    @pip install "fastapi[standard]"
    # @deactivate```

Dockefile:
`RUN  make install`

And this is the error:

------
> [8/8] RUN make clean && make venv && make install:
0.191 Cleaning...
0.483 Removed .VENV
0.487 Creating VENV
3.333 VENV created
3.337 Installing dependencies with Poetry...
3.339 /bin/bash: line 1: poetry: command not found
3.340 Error installing dependencies. Ensure Poetry is installed and a pyproject.toml file exists.
3.340 make: *** [makefile:25: install] Error 1
------
abws_api.Dockerfile:15
--------------------
  13 |     # TESTING GROUND  -----
  14 |
  15 | >>> RUN make clean && make venv && make install
  16 |
  17 |     # ENTRYPOINT [ "poetry shell", "fastapi dev", "./abwsapi/main.py", "--host", "0.0.0.0" ]
--------------------
ERROR: failed to solve: process "/bin/sh -c make clean && make venv && make install" did not complete successfully: exit code: 2

I'm using Python3.12 , Poetry 2.0.0, Dockerfile

Any guidance would be great please !!

"source" doesn't affect the lines that follow it

Did they even install Poetry?

Post the entire Dockerfile

just change poetry to $(VENV)/bin/poetry and similarly with pip

Here is the entire dockerfile @astral apex :

`FROM fedora:39
ENV PS1='\e[1;36m[API Con]\e[0;32m[\u:\w]$\e[m '
WORKDIR /app

RUN dnf update -y
RUN dnf install make python3 python3-pip curl -y
RUN ln -s python3 /usr/bin/python
RUN curl -sSL https://install.python-poetry.org | python3 -

COPY . /app

ENTRYPOINT [ "poetry shell", "fastapi dev", "./abwsapi/main.py", "--host", "0.0.0.0" ]`

@thorny shell , sorry what do you mean by this ?

you've got a Makefile, yes?

Yes

one of the rules has more than one command line

one of those command lines is "source"

that "source" command does not affect the lines that follow it

actually

I'm trying this simple makefile ya: @source .venv/bin/activate type -a python3 and when I run it I see ```
make ya
make: source: No such file or directory
make: *** [ya] Error 1

When I run the following interactively I dont get any error
made dev

My understanding is that when make executes each line, each line runs in the different shell. So by unifying them into a single line they would run under the same shell. Like its done on:
@source "$(VENV)/bin/activate" && poetry install ...

I still think you should ditch "source" and just explicitly spell out the path to the executables. It's one less moving part to worry about.

I cannot explain why your makefile works at all. Are you using an unusual shell?

Gotcha, ok will try that.

Bash

nothing unusual about that

it's funny, from what you've posted of your Makefile, it looks like it's a collection of rules to make local development easier. I too have a similar collection, but I use a tool called "just", which is vaguely like "make", but way simpler (and more modern). Behold.

I have this vague feeling that no project started after the year 2010 should use "make" at all

Yeah, I picked up PowerShell, but recently started using Nox to just keep it all in Python

Why?

same reason as no project started after the year 2010 should be written in assembly language

I mean, sure, if you're used to it and it fills the need, go ahead. But if you're "In Industry", and you expect teammates to help maintain it ... they'll probably have never encountered it.

I work for an org that has decades old apps running and every project has its makefile 🫠

Gotta hire old dudes with beards then 🤣

Has anyone used one of these paid Django solutions that bake in all the boring but needed stuff (e.g. team accounts, payment plans, etc)? General thoughts on them?

Anybody use AWS Timestream and can help me understand their billing system?
If I make a 10 TCU query for 30 seconds, it just costs me 1/12th of a TCU-hour, right? Or is "Each TCU is billed on an hourly basis" supposed to mean "if you use less than an hour, we round up"?

from that link,

Your workload uses 10 TCUs for 30 minutes, and then 20 TCUs for the next 30 minutes. You're billed for 15 TCU-hours (10 TCUs x 0.5 hours + 20 TCUs x 0.5 hours).
so for your example, it'd be 10 * 1 / 120

Would THIS be the correct place to discuss coding agents?

🤷

can't hurt to ask

What is a coding agent? 🤔

surely it's a spy who is writing up a coded message

It's a chemical having a heart attack

sorry, i can't disclose this information

if I tell you, I'd have to kill you

django,flask and a python script for a Dockerfile

Good day y'all, are people using black or ruff for linting these days?

I understand it's a bit of a loaded question, people may be on legacy code bases and not able to make changes to newer tooling

but the reason I ask is that I don't typically work in the Python ecosystem and my knowledge of the tooling is dated

I currently use Black as a formatter and Pyright as a linter

but looking at the UV documentation for ruff it appears to be a much faster tool for both formatting and linting and I am having trouble determining if it's worth changing over

We are interested migrating to ruff too, because checking over million code lines will be faster with it.
Except we have over million code lines and nobody is enthusiastic enough or having time allocations to do the migrations 😄

Thanks for your response - I think I'll make a branch and try it out

Black is good in being automated formatter

I don't remember ruff being same, it should be Flake8 alternative. Language best practices linter I think

https://docs.astral.sh/ruff/faq/

Nah it can replace black too

U still need pyright/ type checker

Really? Ok, interesting, I thought that it replaced it

not according to FAQ 🙂 Just Black + Flake8/Pylint replacer.

Yes. The Ruff linter is compatible with Black out-of-the-box, as long as the line-length setting is consistent between the two.

huh. out of the box Black replacement 🤔

Ruff can be used as a drop-in replacement for Flake8 when used (1) without or with a small number of plugins, (2) alongside Black, and (3) on Python 3 code.
and drop in replacement for Flake8

may be its adoptation would not be as hard as i imagine

Ok interesting

so instead of Black + isort + Pyright it would be ruff format + ruff lint + pyright?

more like, instead of black+isort + flake8 + pyright, it will be ruff format + ruff check + pyright 🙂

damn, okay cool, thanks very much

I'm not familiar with flake8 at all

ruff check --fix i like that they offer some errors to fix automatically

this feature i don't remember being present in other python linters

(i hate fixing issues manually 😅 )

Ruff

Hi! I’m new to this server and posting on the most relevant channel.

I’m trying to learn KerrGeoPy, a library to simulate orbits in Kerr geometry. There are no tutorials online and I’m having a hard time understanding the documentation. Wizards please help…

@rapid sparrow I replaced isort and black with ruff, now its pyright + ruff format + ruff lint

it's nice

I do ruff as pre-commit and pyright as a github action

Nice 👍🙂

@glass ember question why pyright in addition to ruff format and riff lint ? Reason I ask is I am setting up a open-source Python starter template and evaluating options like this. Ref: https://github.com/smorin/py-launch-blueprint

Ruff documentation talks about how it’s not a replacement for type checkers. The type checker will find errors that ruff won’t and vice versa.

Dark duck linked it here #tools-and-devops message

Opinion on mypy vs pyright?

I was originally using mypy, but then my neovim had the pyright lsp installed which led me to research the difference.

Mypy is the og type checker for python - it’s much older. Pyright is a Microsoft product, it’s built for speed.

After integrating pyright, by GitHub action was twice as fast

Would anyone be able to comment if this would be a good forum to ask about templating libraries like cookiecutter and copier? I am working on an open- source starter template for Python and trying to pick a good version. https://github.com/smorin/py-launch-blueprint

Maybe I’ll look at switching over

Hi

I'd like to integrate kafka into my Python django project. Which library do you recommend? Which is the most reliable?

https://github.com/confluentinc/confluent-kafka-python OR https://github.com/wbarnha/kafka-python-ng

need python helper some one

@tawny ledge just ask. #python-discussion is for general questions 🙂

@twilit forum brother can u help please i request u

Ask your question

i have a github files is this possbile can you update

@twilit forum ?

@twilit forum are u alive?

I don't see a question yet

Open a thread in #1035199133436354600

Does anyone know if nh3 is the only alternative to bleach for input sanitization?

What are you trying to achieve?

For input sanitation isn't really the right terminology

or the right technology, instead you have a separation of markup and content with a template engine, and escape all content regardless if it's input or not

I have a payload for an endpoint that should be plain text. I'm considering this to be input. I want to ensure that there are no special characters or HTML. I want to sanitize it with nh3

Don't do that, just escape it

if I have an empty array of white listed elements, meaning no html is allowed, then it should return the contents without any markup

If it's in a JSON endpoint, insert it into a DOM node as text

endpoints shouldn't do any escaping

Do it at the last possible moment before making html

why not?

Because otherwise it's ambiguous if a field value needs inserting with or without escaping

well from the users perspective, nothing changes

if a bad actor attempts to store markup in the db, it's stripped prior to

It's not markup it's plaintext

right, but it will come back as markup when fetched no?

wont the browser just render it as markup if it recognizes valid tags?

What do you mean when you say endpoint

there's a the server and the client. The server has a series of endpoints exposed. One of which allows the client to upload job notes, which should only be plain text. There's an additional endpoint to get that job note by id, or all job notes by user id

And you send back what exactly?

A JSON object with a string field?

And how do you render it on the client? This is a web app?

You should handle the escaping on the client

Or insert into an element as text

Probably this is best in #web-development

Is there any Python package for serving Git repositories? I know at the most simplistic I can use Apache plus the git-http-backend to do this, but I just wondered if there's any Python project to do similar.

Hi Guys, I work on a project where we use LLM's like gpt-4o models, and use AWS as cloud provider. I would like to explore GraphRAG and implement it in our project, could you please let me know some good resources to study about it, or how have you implemented it.

Thanks in advance!!

Probably not, or at least, not one that anyone with any sense would actually use. Git repositories are typically served by (as you noticed) a web server -- not necessarily Apache -- or by ssh. [There is also a special read-only "git" server but I doubt it's widely used]

Git itself comes with a simple git server

Git itself comes with a simple git server
which is runnable simply from CLI. https://git-scm.com/book/en/v2/Git-on-the-Server-Setting-Up-the-Server

Alternatively i can recommend Gitea as Git with GUI interface easy to run https://docs.gitea.com/category/installation
it offers plentifully of simple options for its running

Gitea now comes even with its own CI runners 😏 which support even actions written in go

Thanks. I had just wondered. My use case is serving Git repos from a (say) Flask application. I'd like some routes to hit git repos and all other routes should get processed by Flask functions.

It seems that the two simple ways to do that are to either have a web server (e.g. Apache) sit in front and redirect Git requests to CGI git-http-backend, or alternatively from the Flask app, invoke the git-http-backend CGI directly.

Gitea looks nice, but if too nice for what I'm implementing. 🙂

just put in front of Flask, Nginx (or Caddy) web server
and you could make with it redirecting to different services. Two ways of common ways to redirect rqeuest is supported

• Domain based. gitea.example.com to gitea, api.example.com to api for example . Your cookies/authorizations can still easy travel between subdomains of same domain
• Path based, create some rule that example.com/api to api, the rest to gitea or smth else

https://www.digitalocean.com/community/tutorials/how-to-configure-nginx-as-a-reverse-proxy-on-ubuntu-22-04
https://caddyserver.com/docs/quick-starts/reverse-proxy

Technically you can make probably reverse proxy such features implemeted at the level of Flask if u need that

https://medium.com/customorchestrator/simple-reverse-proxy-server-using-flask-936087ce0afb
but it is more common to use for such usage case Nginx/Caddy

Gitea looks nice, but if too nice for what I'm implementing. 🙂
Implemented in Golang 😏 https://github.com/go-gitea/gitea

https://www.youtube.com/watch?v=vQA5aLctA0I

For domain based routing in nginx, use server_name https://nginx.org/en/docs/http/server_names.html
For path based -> location https://medium.com/cloud-native-daily/path-based-routing-with-nginx-reverse-proxy-for-multiple-applications-in-a-vm-53838169540c

These are all good suggestions thanks. The reason I'm thinking of having the Flask application itself make the decisions about whether to divert a route off to some (CGI) git backend is that in my scenario git repos could appear at any path (e.g. https://example.com/team/user/project/blah/repo1/) so the app knows it's a repo and not a Flask page to render and so invokes the CGI. Doing this in web server (Caddy/Nginx/Apache) seems infeasible to me.

🤔 You are basically then looking at just using Web server "redirect" option
Not sure how reliably reverse proxying will be working in such sitation, browser security can object such abusage (CORS)

may be just opening in Iframe?

if the site does not forbid it

in this way your interface can still be present at outside

No, becuase the client could be the Git command line. Iframe isn't much use if you're wanting to clone a repo, no?

no. Regardless if will not be working in anyway for cloning unless u utilize some Git mirror cloning technique

hmm, don't think that's right. If I use git-http-backend then it will be clonable.

Anyway, thanks for your help! I'll see how I get on.

Most people use SSH way to use Git.

http is used only by.. students/novices and people wishing to clone public repo they don't have internal access to

You don't know my use case. Thanks for your help though.

Unsure if this is a good place to ask. But does anyone have any experience with setting up jupyter-notebook docker images and adding custom kernels?

I'm working on a project where a basic lambda calculus kernel has been made, and we want to add this to out deployed jupyter server

Hello does anyone have a custom code that integrates Marauder and CC1101 on an M5StickC Plus2? Im looking to run both attacks from the same device. Thanks!

I would like advice on virtual environments for developing and deploying Python web apps. I got started with conda due to an interest in data science, and it's been fine to start with, but I'd like to avoid gotchas down the road e.g. I'm unsure of the consequences of combining pip and conda installs. (Mac OS for dev, Ubuntu Linux for deploy)

Are you still working mainly in data science?

If it ain't broke don't fix it I would say. But if you're curious start with plain old pip and venv. Once you understand their limitations you can make informed decisions on 3rd party tools.

I wasn't working in data science, just getting familiar with the field. I primarily develop web apps in Racket, and will likely be switching to Python. No need for a virtual environment in Racket. I used a couple in Ruby ages ago.

Is there any issue using conda for one project and venv/pip for another?

Cool! No problem with switching between conda and pip. Other than it might be a little harder to go deep on both.

I use conda for my data projects often, because all the resources online do. I just find myself having to look up the commands.

wow, racket ... you must be impervious to pain 🤣

you mean https://racket-lang.org/, right?

Yes, that Racket. I've been developing with it full time for about 5 years, and have enjoyed every minute of it :) It's a long story re: switching, but one of the main factors is simply Python's ecosystem, especially since we'll be adding data science and machine learning. And, I prefer being an application developer instead of a web framework developer :)

re: my previous question, Poetry is looking pretty good for virtual environments.

Poetry is what I use. But my head is being turned by "uv"

It's really a pity the Racket leadership is so focused on research and education, the runtime is one of the most solid I've ever used - processes simply do not crash nor leak memory, and the threading concurrency is top notch (requires one process per core), but recently starting to develop yet another library that already exists in Python was too much :)

I seem to recall being frustrated at the lack of handy libraries, which drove me to python

I used Racket to write a nasty pile of spaghetti that became an IRC bot

Just installed Poetry, and I'm a bit confused about how to install a specific Python version in the virtual environment. My MacOS comes with Python 3.9.0. The Poetry docs state:

Unlike with other packages, Poetry will not automatically install a python interpreter for you. If you want to run Python files in your package like a script or application, you must bring your own python interpreter to run them.
With conda, I would specify the Python version when creating a new virtual env. How is this done with Poetry?

I thought it was a best practice to leave the OS installed Python alone, and install the desired Python version in the virtual env.

Install other Python versions with brew

The Poetry docs also seemed to indicate you could use conda, but that just seems very odd.

!pip pbs-installer is another option (requires python)

Its what pdm uses

Link?

https://python-poetry.org/docs/basic-usage/

search for "conda activate"

That's for using poetry to install packages into a conda managed venv

I know it's premature, but at this point, I give the lead to conda :) It just makes sense to specify the Python version when instantiating a new virtual env to me.

It only uses conda as an example. It's really for any tool that automatically activates your venv

I thought Poetry was the tool to activate my virtual env.

Do poetry env use 3.12

https://python-poetry.org/docs/managing-environments/#switching-between-environments

Only for poetry shell

It wants to hide away the concept of venv activation

Sorry if I'm being dense, but consider the following conda workflow:

conda create -n foo python=3.11
conda activate foo
# install stuff and run apps in the virtual env
conda deactivate

What is the equivalent workflow with Poetry?

poetry env use python3.11
poetry install

poetry shell
python x.py
exit
# or
poetry run python x.py

Interesting - thanks! The Poetry startup doc had me start with poetry new demo, and then told me I'm on my own for Python :)

Maybe they should've started with poetry env use python3.11 instead ?

Your first line failed unfortunately.

% poetry env use python3.11                

Poetry could not find a pyproject.toml file in /Users/badkins/python-projects or its parents

You need to run new or init first

Won't that cause Poetry to set the Python version to whatever my system version is then?

Check the --help text

I did new, and then I get:

% poetry env use python3.11

Could not find the python executable python3.11

You need to have python3.11 installed

I may just stick with conda, Poetry needs some serious work on their onboarding.

Maybe my thinking has been influenced by conda being my first experience, but it does make sense to first create the virtual environment, and then install the desired Python version into that env.

You need to install the python you need

Yes, I understand that, I just don't know why Poetry forces that.

Because platforms are different

why not, poetry new demo version=3.11 or something similar

The Python versions UV and pdm install have caveats compared to the system versions

Check new --help

Which is the best method of installing a Python version that works the same on MacOS (my dev) and Linux (my deploy) ? i.e. brew is MacOS specific.

What distro?

Ubuntu

Use apt

Combined with the deadsnakes ppa

You can also use pyenv

https://github.com/pyenv/pyenv

That builds python locally and installs it in your home dir

I'll give that a shot. Just seems weird to have pyenv manage what seems to be a virtual env of sorts (just with Python alone), and then Poetry manage separate virtual environments, that are depended on the pyenv environment for a specific Python version.

It builds python itself

yes, but also allows multiple versions of Python on the same machine, right?

You need to install a Python version before you can use it to make a venv

Yes

And Poetry knows the internals of Pyenv enough to be able to link different Python versions to different venv's ?

Pyenv adds shims to your PATH, so poetry should see it

Please don't tell me I need to first activate a specific Python version before activating a specific Poetry venv!

Um...

You can activate multiple Python versions at once

Oh, it gives different names I suppose.

pyenv global 3.{9..13}

Run that once

Its bash shorthand for pyenv global 3.9 3.10 3.11 3.12 3.13

But once I get all this setup , when I activate a Poetry venv, I just run python, and the right version is invoked, right?

Yes

ok, cool. Thanks for your patience - much appreciated!

<sigh> I really should've chose the Linux method for pyenv even when installing on MacOS. brew just installed dozens of packages as part of the pyenv install, so I'm pretty sure it screwed up my postgres for the Nth time. My fault for forgetting how screwed up homebrew is :(

I thought pyenv was just a single shell script

and I struggled with postgres on MacOS until I decided to always just run it in docker -- now my life is great, and I'm sitting on a tropical beach with a cold drink 😁

I was fortunate, my postgres is ok. Probably because the last time brew "did its thing", it upgraded to a new enough version.

poetry shell doesn't work with Poetry 2.0.1. There is poetry env use but that requires specifying a Python version vs. activating the one associated with the project. There is also poetry env activate, but that just displays a command to activate the env. I'm wondering what Poetry buys me beyond venv

poetry run $SHELL is probably an OK substitute

poetry env info seems to indicate I've already activated a virtual env, but I have no idea how I did that. Either new did it, or the command to display the command to activate a venv actually activated it instead of just showing the command. I'll continue to keep an open mind about Poetry, but it's one of the least intuitive tools I can recall using.

Some web research seems to indicate a lot of people favor Poetry, and conda has terrible code, etc., but I got up and running w/ conda in seconds, and it always worked the way I expected activate -> work in the env -> deactivate I can see why it appeals to academics and non-software engineers.

Any idea how to deactivate a Poetry virtual env?

Use shell redirection

. <(poetry env activate) 

None of the commands listed with poetry list seem like candidates.

If you prefer conda, keep using it.

To be frank @gentle solstice having to redirect the output of a command to the shell seems utterly ridiculous - why would a virtual env manager not have a command to activate the virtual env?

Make a shell alias?

re: keep using conda, my impression is I may regret that down the road

To make shell activation work with a command, it needs to be a bash function.

Poetry is not written in bash

So maybe conda needs to be more intrusive to allow easier activation?

Maybe it could provide an init function you can source in your zshrc, but I don't think so.

Do you know how to deactivate?

In conda?

Poetry?

lol - in Poetry. With conda it's unsurprisingly conda deactivate

Poetry uses virtualenv

If you activated the venv, it will have the name in the prompt. Then you can run the deactivate function.

!pip virtualenvwrapper this might interest you

badkins@create web-demo % deactivate
zsh: command not found: deactivate

Its bash functions to manage venvs

Your venv was not activated

it had the name in the prompt, and poetry env info seems to indicate a virtualenv is active

That just shows the env poetry will use in poetry run

Ah! Yes, that threw me off. sourcing the command does then allow me to deactivate

This has commands like conda activate

So pyenv for managing multiple Python versions on the box, venv for the virtual environments, and Poetry is just for package dependencies?

More or less

Appreciate the tip on the additional wrapper, but I think I'm understanding things ok now, and would rather not introduce another layer. I don't expect to have too many different environments. I had 5 Racket apps in production with a single environment w/o issues, so I think I can keep my Python envs to a minimum.

Feel free to write some zsh functions to help

Yeah, I'll automate the tedious stuff later as I refine my workflow.

This is that same workflow in uv:

# this command installs the requested python if it does not already exist on your machine
➜  uv venv --python 3.9
Using CPython 3.9.21
Creating virtual environment at: .venv
Activate with: source .venv/bin/activate
➜  source .venv/bin/activate
(scratch) ➜  uv pip install requests
Resolved 5 packages in 1.90s
Prepared 2 packages in 195ms
Installed 5 packages in 30ms
 + certifi==2025.1.31
 + charset-normalizer==3.4.1
 + idna==3.10
 + requests==2.32.3
 + urllib3==2.3.0
(scratch) ➜  deactivate

Modern python tooling seems to be moving away from "activating" venvs, which is a good thing in my eyes.

Activating venvs is nothing but a source of problems for new users

Node is held in much better light for nearly the same system, simply because it's a standard there to do $tool run app that automatically uses the correct node_modules (I know it's not the only factor, but certainly one of the factors)

with poetry, uv, hatch, pdm, etc you're supposed to use $tool run app to run your app with the correct venv. It's simple and cross platform.

That's valid. I just have to remember it when I'm running linters and formatters so I don't mess up everything with another version.

That's only a concern if you have a global version installed too.

Otherwise black/ruff . will just fail without $tool run

I usually do 🙂

So I can lint scripts that aren't in a venv

Makes sense

Not a big deal, just a new habit I have to pickup

I think pipx and uv tool install let you global install with custom prefixes

Which would let you have a global version with a different name

I think I agree that it's the way to go, using $tool run ...

What's the best way to setup a monorepo that publishes multiple packages to PyPI?

Additionally, some packages depend on others. These would be the packages:

packages/
  inngest/
  inngest-middleware-encryption/
  inngest-middleware-sentry/

Where the 2 middleware packages depend on inngest. So when I'm running tests, they'd use the source code in inngest instead of actually installing inngest from PyPI

What's your test runner? tox? nox? github-actions?

GitHub Actions + pytest

hey anyone currently free to explain about github thru vc or chats? pls dm

You can chat in a #❓｜how-to-get-help channel

It's also better to ask your question rather than ask to ask. And we don't help in dms

someone said to ask in this group so i had asked

i didnt know mb

do any of you guys run some cron jobs to reclaim disk space (docker) every once in a while if so what all do u prune
i have a script setup for building and deploying on my self hosted runner (on push/merge to main branch) which leads to build cache accumulating
also i do check if some critical files were changed before rebuilding and deploying again

runner platform? some offer cache pruning regularly

self hosted vm registered with GitHub actions

i run a scheduled cache prune

but its provided by ci

I prune immediately after changing containers

I do docker system prune every month

Ot was it system reset?

New computer every month?

Nice

I'm 🤏 close to being able to do that

I needed it because dokku doesn't clean up after itself.

as long as nobody deploys at midnight, it'll be fine

What's everyone's thoughts on continuous deployment where you deploy to production automatically on each new push of a feature VS creating a release of the software to be downloaded and deployed elsewhere manually on VPSs and the like?. I personally feel like the first option requires a level of discipline I am not comfortable with and would prefer to manage the exact resources used on a budget and not have all the details of infrastructure mixed into a pipeline with the code. I feel like it would be more comfortable to tag commits and push whenever a release is desired then take that release and deploy it either manually or with iac like terraform.

up to you, really

I think people set up automated pipelines when they get tired of doing it manually, or after they've made some bad mistakes

DevOps engineer here.

Manual is not the way. My memory is too much human to remember all details.

Automated is the way.
To staging can be fully automated.
To production must be having one verification. I deploy currently pet projects by just pushing git tags.

Tag like v1.32 triggers deployment to production
v1.32-a1 deploys to staging (to avoid triggering some rate limits had to make deployment to staging with verification too)

Before you deploy to production at work
Important to open git diff of made changes and review what you deploy for sure. Check with people that git committed it, if they made QA for all features

--+
Frequent automated deployment mean that chances for Smth bad present is quite small.
And if it is present, easier to discover

Automated deployment to staging ensures people have easier time to validate their stuff

I completely agree to an extent that manual isn't the way in general, it's a lot of error prone work and each change or addition to a server is something to keep track of or something to go wrong, and a massive amount of labor in the long run. But I think just having unit/integration/acceptance tests pass would tell you the software you built is fit for use, so like if I build the software, and if I wasn't the one managing/deploying it, then those tests would probably be considered enough for other people to be using it and not expect any bugs that mess with existing features in drastic ways in production. I personally do not want to manually manage upgrading servers software or adding new instances (as in the setup work required, management, etc) but I was thinking maybe I could just do the same quality assurances of continuous deployment, release it to a docker registry and then treat it like trusted third party software and provision infrastructure and make infrastructure as code scripts to deploy it, like from DNS records, to installing docker, setting up stuff for the private repository for downloading it, user accounts, firewall rules etc, and just provision and instance with automatic setup or add more that way, destruct existing ones and bring new ones up. Like so that instead of managing instances and all the software and keeping track, you just delete one and make a new one with the software all done for you. And then you only manage more permanent stuff like databases, message queues, redis, etc.

But I think just having unit/integration/acceptance tests pass would tell you the software you built is fit for use, so like if I build the software, and if I wasn't the one managing/deploying it, then those tests would probably be considered enough for other people to be using it and not expect any bugs that mess with existing features in drastic ways in production.
First, auto tests can't reveal problems with infra bugs, unless u write End to end testing, which is painful and expensive to maintain

Secondly, important to automate infrastructure is keeping Infrastructure as a Code. Git versioned together with the rest of your app code. It makes documentation as a code how your application is build, released, tested and deployed

I personally do not want to manually manage upgrading servers software or adding new instances (as in the setup work required, management, etc)
modern infra devs do not want that too. That's why Container Scheduling Abstractions are very prefered... we would prefer to deploy application to AWS ECS, or docker swarm, or as last resort to Kubernetes, but not to deal with Linux machines under the hood.
Because procedurally updating linux machines is very... dirty experience. Declarative infrastructure is way faster to apply itself
It is good when Linux Machines are built as server images, u don't get attached to them and can easily swap one version to another one without any problems

Ideally you don't see thos server machines at all, at least if u made app for work

u just interact with container scheduling abstraction, and all the state is kept in external databases

Thus your apps run stateless, and server machines can be easily destroyed/recreated at any time 😏

Thus=> you can even easily have turned on autoscaling of those machines, and not care about manually scaling them

but I was thinking maybe I could just do the same quality assurances of continuous deployment, release it to a docker registry
Saving to docker registry is the way. In this way u can relatively easily rollback to previous version.
Also... this choice is universally compatible with all container scheduling systems.

and then treat it like trusted third party software and provision infrastructure and make infrastructure as code scripts to deploy it, like from DNS records, to installing docker, setting up stuff for the private repository for downloading it, user accounts, firewall rules etc, and just provision and instance with automatic setup or add more that way, destruct existing ones and bring new ones up. Like so that instead of managing instances and all the software and keeping track, you just delete one and make a new one with the software all done for you. And then you only manage more permanent stuff like databases, message queues, redis, etc.
Basically i have already at my pet projects situation like that
my CI just builds image, saves, marks as production deployment one, and in one comand app is rotated to new deployed container 😏
docker service update --image darkwind8/darkstat:production production-darkstat-app
https://github.com/darklab8/fl-darkstat/blob/23348746dd4a1126f1b4e8c6b1cc57d96ae57fdd/.github/workflows/docker-production.yml#L126

All the configuration of infrastructure, DNS, environment variables are done through terraform for me
https://github.com/darklab8/fl-darkstat/blob/master/tf/production/main.tf
i like terraform for its declarative nature, and ability to review what WILL be changed in comparison to new code, what will be appleid changed?
I like that if i delete terraform code => It auto deletes resoruces
I don't need to write deletion scripts 😏 state is kept clean by terraform nature, no longer present infra code deletes its resources on next terraform apply

.github/workflows/docker-production.yml line 126

docker service update --image darkwind8/darkstat:production production-darkstat-app```

I am building servers for a game with rooms and I don't think I can do something server less to auto scale them. The design also relies on people being routed to specific server instances with other players for chatting, rooms and queries, so more servers with their caches, and own room instances = more players and they need to be up all the time. It's possible that the design could be changed so that the API and query stuff could be standard and server less but the game stuff would still need servers and I think need more provisioned manually or at least with some machines explicitly. But I am opting to vps style stuff and getting the most out of my money.

At work we have the same stuff, except we rotate/switch image in AWS ECS and kubernetes

We still have servers

we just can autoscale them freely because we keep no state on them

Stateless apps, is the secret ingridient in average for good infra

Keeping state in some remotely accessable storage

I can sort of do that in this design to an extent. There is no state aside from caches on them, and all business logic will use the one database atomically, and when they start they'll load and stream in everything they need. So one can be destructed and players routed to a different one when it happens if I can make it shut down gracefully. Everything that is stateful to the server doesn't matter is only local.

I feel like infra bugs are a different issue. Like I feel like I can guarantee that given docker is installed and an image is run that nothing will go wrong, but that anything to that point and maybe on the server like in configuring it with the iac scripts could be wrong. But at that point my software works and the issues in infrastructure should be minimal, I am pretty sure there's ways to test that some of the infrastructure will be deployed correctly too. I remember seeing stuff on acceptance testing terraform stuff.

Infra bugs...

• Is correctly configured firewall at server side and cloud provider side
• correct env vars are inputted for access to infra resources RabbitMQ/Redis/SQS and etc, credentials to every kind of them
• is web server correctly configured for its reverse proxy working, and able to actually proxy pass traffic to your http/grcp whatever ports
• is TSL actually working, and automated renewal does work
• does some app has memory leak and breaks other apps by taking over the server because u haven't configured memory hard limits?
• does some app breaks because consumes suddently far more ram and gets killed because of hard limits
• did you configure directly access from public to private network
• did u configure load balancer correctly working and it is able to pass traffic to relevant application
• did u correctly configure IAM permissions
• does networking configured correctly and the app in question is able to access by network necessary resources

The thing with infra bugs, that anything can be wrong there, and u just need to handle Infrastructure as a code for sanity, who changed what, when it was last working and what changed?

It is not really different from main application code management

Also u need good monitoring systems for complex applications/infra in order to manage it sanely, preferably with automated alerts

It is a question of basically size of app/infra

Things can be fairly simple for a single app, that has small amount of users

Things become different when u have dozens of developers, independently releasing their own applications for working with million of users lets say

Because i like simplicity, i enjoy a fair share of my infra code even in my pet projects though 😄 Which have just thousands users.
It is still nice not remembering how to manage them in terms of deployment/infra code, everything being done automatically for all my apps

If you don't have recorded infrastructure as code, then u keep naturally things in your head how to manage it. And head can only fit so much

Like I feel like I can guarantee that given docker is installed and an image is run that nothing will go wrong
problem with this approach. that it works only if your app is not depended on any external infra resoruces to function.
And not requiring any extra infrea features on top for its functioning.

server infra intended for large amount of users grows in ... many extra infra resources/features to function correctly, and everything should be correct, otherwise will be downtime

I agree that all of those are very important, some depend. Firewall configuration can be tested independently of application code, as the concern is weather the code in docker works as expected imo. So you could start it on your infrastructure for a test and see if it is accessible I think (I am aiming for using pulumi so I think I can) so that's easily testable I think. Correct env vars could be messed up easily for sure, I do imagine it happening not initially but if changed in the future though, maybe a smoke test to verify everything is up and configured correctly would address that? And tests for the iac code like that it will pass in the correct values from the correct resources. Is the web server configured correctly, I was kind of hoping not to have to set one up or pay for hardware to do load balancing and use DNS instead of possible but I will if I have to, but I think if I had one it would be easy enough to test. I feel like a memory leak might still be a concern with testing the application.

Common solution to resolve 90%+ of those issues, is actually just having Staging infrastructure/environment to test things 😏
As long as staging and production are both configured with same infra code pretty much, things are easy to ensure in staging that they will work for production

I can test that my application interacts with external applications correctly by launching them as parts of tests with test containers and seeing how it reacts, like redis, rabbit and postgres.

I think that makes a lot of sense, because it would be deployed to an environment exactly like production and you'd be able to see if anything went wrong. But that's something I'd want to do before upgrading the stuff in the main environment myself, and I'd consider to be for the purpose of testing iac related issues and not specifically with my app.

I just worked a bit more on a linter I was writing (for Suricata rules, not for Python, but written in Python) and it made me wonder: What distinguishes a good linter from a bad linter? Anyone got suggestions to improve my linter?

Other than the objective properties (is fast, doesn't have false positives (not rules you disagree with but rather falsely detecting something)): A high ratio of user thankfulness vs annoyedness. :)

Oh, and the ability to automatically fix the fixable issues, when directed to by the user.

So, basically it shouldn't raise issues for which the user thinks "don't bother me with this"

I agree this is a really great one, but it's a complicated one too. Perhaps something for the future if I see people actually pick up on it

if u rause issues of that level: you better fix them automatically 😏
and have ability to disable them

That's what I would measure a good linter with. But less of "don't bother me" and more of "you're wrong/I disagree".

Yeah, ability to disable rules globally/per file/function/line is a must.

Implemented that one today 😇

Or well, the per-line part. Already had global

I personally would also love a stateful linter, I'm not aware of any that exist: Where it asks me and I can say "no, don't ask me for this piece of code and this rule again", without having to put a magic comment in the code.

(Same for formatters)

Well, putting that comment in your code is the way you make it stateful across different machines

That's one way, yes, but it doesn't have to be the only one.

It could store the information externally in some other file(s) that you commit.

I think there's a PHP linter that allows you to pass a baseline of pre-existing errors to ignore, stored in a seperate file

psalm I think its called

Really great for working with legacy code bases

Thanks for the hint, I'll have to look into whether that does what I mean. Unfortunately/thankfully I don't write PHP these days.. :D

Haha, me neither anymore

Thanks for your thoughts

What do you want to happen if the code with the waived warning changes or moves?

Ruff has an open issue for baseline, which could enhanced to be used for this I suppose.

This is where it gets tricky, yes. Ideally I'd want it to keep being ignored as long as the change isn't semantically about the warning. E.g. if I ignore a "line above 80 cols" warning, it should stay ignored if I add another character to the same line.

Yeah, this is very difficult/impossible to get right, so the fallback should probably be to drop the waiver when it's unclear if it's a new error or not.

Manually written waiver files is common within hardware development.

hey there, i've always dev on pycharm, since it's what one of my friend showed me. The thing is i find it in most use case way too complicated for me and to be fair it's too much. It gets really messy and since my little dev thing is starting to be big. I want to change and setup something properly and better understand. Same for the version of my project, i would like to organize everything properly. Does anyone got any tutorial somewhere, course or review i should follow/read ?

Hey devs I want to archive this type of Subtitles with python or any language . I'm using whisper to transcribe. But don't know how to style, add animation, Blending diffrance transperant type effect on it . Can anyone help me guide me ?

"unknown"

It was me

I said it

iirc, jetbrains can do that if you source control the .idea directory. but I have not tried it

eww sounds tricky

IME most dot directories were not designed to be put into git

I've seen enough people do it with that one specifically 🙄
In this case, I'd obviously would want a solution that's editor-independent. Ideally even linter-independent.

I think jetbrains's is designed to be to share config with team. they have a gitignore in it for your own personal stuff I think

Tell that to .vscode/extensions.json

Honestly I don't think using codes is such a big problem?

ignore = [
    "RUF012", # Mutable class attributes should be annotated with `typing.ClassVar`
    "E501", # Line Length
    "A003", # Class attribute ... is shadowing a python builtin
    "A005", # Module shadows a built-in. We shouldn't care since almost all of our modules are namespaced
    "D", # pydocstyle
    "PD", # pandas-vet
    "ISC001", # Ruff Format
    "COM812", # Ruff Format
]

With code though - yeah, but it's usually a select few codes

1. Ruff's lack of readable error codes is what keeps me from fully embracing it, but that's another topic.
2. My point is I don't want to ignore the line length limit everywhere, just.. sometimes. Without writing # noqa: E501 or # noqa: line-length or something like that in that exceptional line.

I just ignore line length since it's handled by the formatter

mypy is a bit better when it comes to ignoring errors, e.g. ignore[arg-type]

Pylint can do the same since forever. I think ruff is also working on it.

I have the same issue with the formatter though. I don't want to disable any of its rules, but I want to be able to make exceptions without ugly # fmt: off comments.

Honestly you should just ignore some of the errors that are bugging you a bit too much IMO

I don't care about line length, in most cases it's some kind of giant string, if it would bother me I'd just break it down later 🤷‍♂️

And I certainly don't want to mark all my functions, methods, classes and modules with noqa: DWhateverNumber to ignore the mandatory docstrings, right?

Even in the codebase that I'm currently working on I only have around 70 noqas per 32k loc, for me this isn't a big problem

Right, I'm not saying "don't globally ignore any rules", I have lots of rules globally ignored that I just think are dumb. But the rules I do generally agree with often have exceptional cases.

Yeah, I think you can usually remember them, but having a human readable name would be nice

(E.g. I recently ran across this with "don't assign a lambda to a name". I generally agree, but for symmetry reasons in this case it looked better.)

I'm guilty of doing this after inheriting a codebase 😃

ignore = [
    "PT011", "E501", "ISC001", "N", "ANN", "S", "FBT", "B", "A", "COM", "C4", "DTZ", "EM", "D", "PTH", "RUF", "PLR", "FIX", "TD", "ARG", "TRY", "SLF", "ERA", "C90", "PD", "PLW", "PLC", "BLE", "FLY", "INP", "UP031",
]

Hello everyone,

I’d like to share an open-source tool we’ve been working on called Makim: https://osl-incubator.github.io/makim/

Makim is a task automation tool, similar to Make/Makefile and Ansible, but with a more practical approach. Many people use Make for task automation, but since it was originally designed as a build system, its usage for general automation can be cumbersome. In many ways, Makim is similar to Ansible but is designed to work with a single file. In the future, we may add support for splitting .makim.yaml into multiple files, similar to how Ansible handles configuration.

If anyone is interested in trying it out, feedback would be highly appreciated.

Here’s an example in Google Colab that allows you to test it online without installing anything locally:

https://colab.research.google.com/drive/1m131pqi6Bjq8Hp8YN_Cbuyezn61f19lB?usp=sharing

I’ll be happy to hear any thoughts or suggestions.

Thanks for your time, and apologies if this isn’t the best place to ask for feedback.

nice. Going further into writing Self hosted + provider agnostic locally executable CI

I guess it could be done integrated with docker. we've been developing another tool that was built on top of docker-compose, called containers-sugar (or just sugar): https://github.com/osl-incubator/sugar ... we are planning to add support for docker swarm soon.

Trading off yaml to yaml? Looks not very justified.

for dev env, i would prefer keeping things with Compose only. Extra abstraction is not justifying extra upkeep

for homelab prod to use compose/swarm -> i'll just use terraform provider for static typing way to deploy with plan review/state rememberance for automated deletion of previous containers/states (like with this one https://registry.terraform.io/providers/kreuzwerker/docker/latest/docs )

Terraform/Pulumi so far implement best choice for deployment management due to ability to remember state/having typing features/ability to review plans

and dev env is too much simple to justify wrapper around

Hi @rapid sparrow thanks for your feedback! Really appreciate that. I will review the link you shared, thanks! I will also review about pulumi, thanks!!

With sugar, basically we have the same interface/commands for dev/staging/ci/prod etc .. so the team doesn't need to know different technologies.

Once a variable in the .env file specifies which env (ci, testing, dev, prod, etc) should be used, the user doesn't need to worry selecting any env, which avoid human errors.

It can also allow hooks, so before running the given sugar command, it can execute other commands .. for example of you need to prepare something in the host before executing the containers.

dev/staging/ci/prod etc .. so the team doesn't need to know different technologies.
compose alone is not good enough for staging/production running because of not having advantages that Terraform/Pulumi have.
You can't as i mentioned review what changed from previous deployment. (what on next apply will be deleted/created/recreated)
Once a variable in the .env file specifies which env (ci, testing, dev, prod, etc) should be used, the user doesn't need to worry selecting any env, which avoid human errors.
Even worse, you don't have ability that Terraform/Pulumi provide to pull secrets dynamically from remote storages and injecting them into terraform
Solving deployment at the level of Terraform/Pulumi is perfect because we can define all infra resources and input infra variables directly as a code into our containers. Human mistake is pretty much becomes smallest possible.
As well as Terraform module abstractions help to simplify with infra code due to making reusable code that have well defined input/output typed stuff

So what u suggest, using for staging/production such yaml wrapper as sugar, is the same as going to... more prehistoric times and using Cloudformation as yaml to manage infra for example.

such approach does not work well (because has no state remembering, insufficient secret management capabilities, too much yaml)

Or at least it will be hardly accepted for people who prefer to see less Yaml in their infrastructure code 😏

TLDR: in my opinion with sugar tool you concentrated on a wrong direction? for usage cases that other tools have more perfect solution

Your original Makim tool was more interesting in its idea

• since you made pretty much Makefile in yaml (upgrade from confusing original Makefile in my opinion)
• and ability to execute pretty much array of CI code locally through it. (restrictions of Github/Gitlab needing to be executed only remotely is a restriction, and your tool does bring liberation from that problem)

Sugar on another hand so far is too much closely tied to Docker features, and i would be hesitant to bring it
Just because it exchanges one array of yaml for me to another array of yaml for me
While closely being tied to docker features. I see fragility here of not justified abstraction

• its features may fall apart because of incompatibility between itself and docker
• and all the features it offers can be done by other tools better (terraform/pulumi for staging/production)
• or not using the tool itself brings me more stability of interacting with docker/compose directly
• i don't see pretty much enough value Sugar brings in its features to justify its addition

P.S. to be fair i also question sanity of bringing infra tool made not in Golang. (or at least made without compiling to a single binary file to download and run as executable)

• If u used golang u could have used its Docker bindings without extra lib wrapper.
• And your tool would have been installable into Docker image/CI as a single binary file, without needing to bring python and its libs, which can be very difficult to install in another docker image. Python installing from sources is very nasty complicated, any mistake in C compiler missconfiguration/library dependencies/Smth OS level and not even possible to compile it with all its features
  • For those reasons highly likely i will continue using only Taskfile (for yaml makefile) https://taskfile.dev/usage/ , since it is easy to bring into any image / easy for devs to install in a cross language fashion. I discovered actually that non python devs have very big problems to install anything python related locally (while static binaries made by go are easy to download by any devs). So your choice to utilize Python for infra tool, makes it pretty much restricted to python devs only, unless u will provide some options to install it through apt/and etc stuff

hi @rapid sparrow , thank you so much for your feedback, I really appreciate that.
I will re-read it again to ensure I am not missing any part of what you said.

but I would like to hightlight some points:

• I am not against terraform, and although I am not an expert, it is a great tool, and from our community we also hosted a talk about that.
• about secrets, I am very aware about that, I am checking some options for integrating that in the pipeline in the way that it would select the proper secrets for the given environment name.
• about the ability to review what was changed from previous deployment, tbh I never needed that, because everything is on github, so all the history is there, but if you have any reference/link about that, I would love to learn more about that.
• and again about terraform, I really think it is great tool, but for a small team, with small budgets with mainly non experienced developers, using terraform is not a feasible option.

@rapid sparrow , and about your last comment, that is a very interesting point.

• so using python, it helps me in terms of productivity, as I am the maintainer of many projects, I prefer to pick the one I can implement a feature or fix a bug as fast as possible.
• if I would forced to change the programming language, for performance issues for example, I would prefer rust over golang, but maybe for personal reasons
• usually I don't have makim installed inside a container, usually I have it outside in the host, and because most of my projects are in python, we always have python environment very well defined. so it is not a big deal for the projects I am maintaining. but anyway we have plans to package makim to other package managers like apt

thank you so much all your inputs, I will keep that in mind! feedback from people with different setups help me to understand more other needs and workflow. appreciate that.

• Rust could work too if u are more comfortable with it. It is cross platform compilable as far as I am aware
• Golang just has advantages of easier interacting with all infra tools since they are all made with it (docker, kubernetes, monitoring tools, terraform providers and etc). As your tool is technically in CI /infra tools domain u will get extra advantages from using it in this area

Docker compose 1.0 was made in python too before they migrated to go 🙂

that makes sense.

because I also work with data stack, and a lot of libs are moving their cores from c++ to rust, I have this personal bias. also the linux kernel is doing this move as well.

Docker compose 1.0 was made in python too before they migrated to go

that is right XD

we needed to create a rebundle for the v2 to be installed easily with python https://pypi.org/project/compose-go/

PS: we need to fix the CI that cut new releases XD

about the ability to review what was changed from previous deployment, tbh I never needed that, because everything is on github, so all the history is there, but if you have any reference/link about that, I would love to learn more about that.
Example.
https://github.com/darklab8/fl-darkstat/blob/6d4c7aa8c0a26f0f995a3368b9d89ea42cdcbb65/tf/modules/darkstat/dns.tf#L14
all infra code is stored in git too.
And lets say i have environment Production
https://github.com/darklab8/fl-darkstat/blob/master/tf/production/main.tf
It was applied before, currently state is synced to code.

module "dns" {
  source = "../../../../infra/tf/modules/cloudflare_dns"
  zone   = var.zone
  dns_records = concat([{
    type    = "A"
    value   = var.ipv4_address
    name    = var.stat_prefix
    proxied = false
    }
    ],
    var.rpc_prefix != null ? [{
      type    = "A"
      value   = "${var.ipv4_address}-smth"
      name    = var.rpc_prefix
      proxied = false
    }] : [],

Now lets imagine i changed value of DNS A records to include -smth suffix and run tofu apply again?

https://gist.github.com/dd84ai/614eb2edb304bc00c702adc084b1f326

module.darkstat.module.dns.cloudflare_record.record["darkgrpc"]: Refreshing state... [id=e28fee810fb6b7a8aba8267013c6f006]
module.discovery_dev.data.external.disco_dev_webhook: Read complete after 5s [id=-]
module.darkstat.module.dns.cloudflare_record.record["darkstat"]: Refreshing state... [id=e6e9473271f2f056e6f6a152290fea64]
module.darkstat.module.dns.cloudflare_record.record["darkrelay"]: Refreshing state... [id=04142eea253fe9200102c28e39b31675]
module.darkstat.module.dns.cloudflare_record.record["apigateway"]: Refreshing state... [id=a39498b88ea3b2089e2330edbec09066]

You can see my tool refreshing state, what is already synced and it writes me precisely what will be CHANGED, from previous state to new apply?

tf/modules/darkstat/dns.tf line 14

name    = var.rpc_prefix```

  # module.darkstat.module.dns.cloudflare_record.record["darkgrpc"] will be updated in-place
  ~ resource "cloudflare_record" "record" {
        id              = "e28fee810fb6b7a8aba8267013c6f006"
        name            = "darkgrpc"
        tags            = []
      ~ value           = "37.27.207.42" -> "37.27.207.42-smth"
        # (10 unchanged attributes hidden)
    }

  # module.darkstat_vanilla.module.dns.cloudflare_record.record["darkgrpc-vanilla"] will be updated in-place
  ~ resource "cloudflare_record" "record" {
        id              = "465b9216e33034c9ad4267eba653a55e"
        name            = "darkgrpc-vanilla"
        tags            = []
      ~ value           = "37.27.207.42" -> "37.27.207.42-smth"
        # (10 unchanged attributes hidden)
    }

Plan: 0 to add, 3 to change, 0 to destroy.

Now i could delete some infra code entirely.

tofu apply command will show that next apply will be expecting to DESTROY no longer present in code resources

# module.darkstat_vanilla.module.dns.cloudflare_record.record["apigateway-vanilla"] will be destroyed
  # (because cloudflare_record.record is not in configuration)
  - resource "cloudflare_record" "record" {
      - allow_overwrite = false -> null
      - created_on      = "2025-02-09T19:42:27.490505Z" -> null
      - hostname        = "apigateway-vanilla.dd84ai.com" -> null
      - id              = "ed6b2647f4b0d5b818e98b31da51b357" -> null
      - metadata        = {} -> null
      - modified_on     = "2025-02-09T19:42:27.490505Z" -> null
      - name            = "apigateway-vanilla" -> null
      - proxiable       = true -> null
      - proxied         = false -> null
      - tags            = [] -> null
      - ttl             = 60 -> null
      - type            = "A" -> null
      - value           = "37.27.207.42" -> null
      - zone_id         = "b637e66e10cbec997625a2b78c7170fc" -> null
    }

all related resources will be destroyed

i have a powerful feature at my disposal where i apply in new deployment only what is Changed / going to be NEW created / or Destroyed from no longer present code

i have ability to REVIEW

what changed from previous deployment apply

if i delete infra code i do not need to write deletion of infra resources, they are all cleaned up after themselves on their own on next apply

that helps to keep very clean infrastructure, that is ensured in being sync with infra code

and it helps Reviewing that changes are good actually? as u give extra check that applied stuff to production is good to apply

This Plan Review feature basically helps to have human step ensuring extra quality assurance check.
Plus the ability to remember state itself (with refreshing for it to be up to date) makes way cleaner running of infra in staging/production

got it! thanks for the explanation, I really appreciate that. I will play a bit with that this week to learn more about that.

I am not against terraform, and although I am not an expert, it is a great tool, and from our community we also hosted a talk about that.

so using python, it helps me in terms of productivity, as I am the maintainer of many projects, I prefer to pick the one I can implement a feature or fix a bug as fast as possible.
Some extra note, as mentioned infra tools are overly tied to Golang in some cases. Terraform Providers are for example writable in golang only. Option of writing them in any other language is not even present at all as far as i am aware. No any library/binding thingy to make it happen in smth else.

got it! good to know! I thanks for the note!

usually I don't have makim installed inside a container, usually I have it outside in the host, and because most of my projects are in python, we always have python environment very well defined. so it is not a big deal for the projects I am maintaining. but anyway we have plans to package makim to other package managers like apt
i would imagine a good feature of makin is supposed to be ability for easy installation in any Docker image or any CI instrument to reuse its commands in CI or running app container
Some CI tools like Gitlab basically by default run by Docker containers its jobs too.
So.. same problems in CI with installations as to installations to some Docker container
Technically Github Actions has ability to run its jobs in Docker containers too, so even in GH can be faced same issue
For apps that prefer to build and run themselves purely in docker (pretty much all modern web apps), this issue in CI (with difficulty to install smth related to Python) will be encountered even for CI Shell executor running way

got it .. so maybe offering an option to install it from a apt-ish package manager, and maybe adding makim via github action markplace, maybe it could be a good start to address the issues you pointed

if packaging to apt, it will always remain not always easy installable (as in comparison to static binary from Golang/Rust)
Some docker images can be using Alpine (that has different manager apk)
Some can be using different other distros (Centos based stuff with Yum packager)
It will be extra plentiful of different effort to have it somehow running for all those cases
Thing compiled for specific distro like debian can be not working for alpine due to it having entirely different C dependencies and etc.
Some distros can be not having package managers at all

At least with golang (and probably rust too) there is ability just to turn off CGO features, and making same binary file equally runnable on all Linux distros, regardless which C libs it has installed.
That pretty much simplifies distribution of a tool, to a same curl https://install.sh or wget https://binary_file can be offered equally for all OSes

So a thing to be aware about

Easy installability is important feature simplifying adoptation of a makefile like tools (or infra tools in general) 😏

right, you mentioned that before. makes sense. i will think a little bit more about that.

thank you for all your comments. really appreciate that!

@rapid sparrow , I managed to create an executable for makim: https://github.com/osl-incubator/makim/releases/download/1.23.1/makim-linux-x86-64 (updated)

the downside for now is that it is a bit heavy ..

What kind of OS and CPU architecture it is runnable on?

Hi there,

I having an issue where git
Consider there are 2 branches
B1 and B2
I have created PR from B2 to B1 and reverted it.
Again I made changes in B2 and created PR
From B2 to B1
Some of the files and var are not moving and there is an conflict

There are several files changed but it's not shown as change

Makim does't work on windows. And this executable was tested on a linux x86-64. I will add this information into the documentation by the end of the week ... it will be nice also to rename the executable on github to have thus info as a suffix as well

As another Linux fan I approve of this discrimination.

Still not fully great doing that though as it yet another stone 😜🪨 thrown into software and preventing its widespread adaptation.
Makefile type of software should be equally runnable on all OSes 😉 or at least I feel like it is basic sensible requirement today

https://taskfile.dev/
Those guys ship their stuff for all OSes with embedded Linux shell and with basic Linux programs/commands that make same command running even on Windows

When u make Smth in go, u can cross compile from Linux to Windows/macos without visiting another OS
It is not guarantee it will work though, as it can be still having screwed file paths or smth

You use python... Supposedly cross OS language. We could have expected cross OS functioning from even that choice too when u ship it in Pip

For now makim works on linux and macos ... the executable, for now, works just on linux. We had plans to support windows .. but for now we use a lib called sh, internally, to run all the commands .. and it does't work on windows. If anyone wants to contribute to add support to windows, it wil be more than welcome 🙂

If we are accepted by gsoc this year, we can also add this project idea

PR is not a feature of git. What does git say is the difference between those two branches?

For example git diff B1...B2.

I usually use tig to get an overview of my git history. git merge-base --fork-point can be helpful when figuring out where you branched out from a branch.

Folks, I need some feedback regarding my project setup.
I need sagemath as a library, so I'm using pixi to get it from conda. I also need some other libraries from pypi. I've never used tox but it seems to be what people use, so I tried to set it up but the tox environments don't contain sage.
Is there a way to fix this or am I on a wrong path?

This is my pyproject.toml

[project]
name = "my_project"
requires-python = "~= 3.12"
version = "2.0.0"

[build-system]
build-backend = "hatchling.build"
requires = ["hatchling"]

[tool.pixi.project]
channels = ["conda-forge"]
platforms = ["linux-64"]

[tool.pixi.pypi-dependencies]
my_project = { path = ".", editable = true }

[tool.pixi.tasks]
lint = "ruff check --fix"
fmt = "ruff format"
style = { depends-on = ["fmt", "lint"] }

[tool.pixi.dependencies]
sage = ">=10.5,<11"
pixi-pycharm = ">=0.0.8,<0.0.9"
cryptography = ">=44.0.1,<45"
attrs = ">=25.1.0,<26"

[tool.pixi.environments]
default = { solve-group = "default" }
dev = { features = ["dev", "test", "lint"], solve-group = "default" }

[tool.pixi.host-dependencies]
hatchling = ">=1.27.0,<2"
sage = ">=10.5,<11"

[dependency-groups]
test = ["hypothesis", "pytest>=8.3.4,<9", "tox>=4.24.1,<5"]
lint = ["ruff", "pyright", "validate-pyproject[all]"]
dev = ["pre-commit"]

[tool.ruff]
preview = true
line-length = 100

[tool.ruff.lint]
select = [
    # ...
]

[tool.pyright]
include = ["src"]
pythonVersion = "3.12"

[tool.tox]
requires = ["tox>=4.24.1"]
env_list = ["3.12", "lint", "type"]

[tool.tox.env_run_base]
description = "run tests under {base_python}"
dependency_groups = ["test"]
commands = [["pytest"]]

[tool.tox.env.type]
description = "run type check on code base"
dependency_groups = ["lint"]
commands = [
    ["pyright", "src", "tests"],
]

[tool.tox.env.lint]
description = "run linting on code base"
dependency_groups = ["lint"]
commands = [
    ["ruff", "check", "src", "tests"],
    ["ruff", "format", "--check", "src", "tests"],
    ["validate-pyproject", "pyproject.toml"],
]

The error:

type: commands[0]> pyright src tests
/home/user/PycharmProjects/my_project/src/my_project/main.py:7:6 - error: Import "sage.all" could not be resolved (reportMissingImports)

Please ping me if you have a suggestion

I decided to remove tox

Can anyone suggest best resource to learn docker

originally i learned by another book, but its quality seriously degraded in recent years 🤔

as far as i checked this is the only rich and up to date enough alternative

with correct given advices

Thank you

tox really got useful after 4.22 and pep 735

!pep 751 will make it even better

I have a conda dependency, that seems to be too much

There's a plugin for that. https://github.com/tox-dev/tox-conda

tox-dev has a ton of useful packages

Nah, it’s dead

Doesn’t even work with tox >=4

pip package is archived too

what conda package?

sage

Excited for this! 😄

Im extremely happy with pixi so far

is that another test runner?

No, another dependency management thing

https://pixi.sh this?

But it lets me combine conda and pip packages pretty easily

Yeah

you could just include conda as a command

Replaced uv with pixi because it doesn’t support conda

How do you mean?

seems like a good alternative that supports conda

I wonder whether I’ll miss any tox features. The main thing is running tests in different environments, right? Seems like pixi can do that

i prefer just using Github Actions matrix mod for that
Let CI run for all python/framework, whatever versions automatically

i wish to have my local environmen running tests fast for a single env

dumb question here, how do you guys go about testing a (.py) server in docker image launched by ec2 instance to verify if port is actually working?

Monitoring systems

😏 Healthcheck services for dumb minimal solution
https://github.com/ivbeg/awesome-status-pages
Like Gatus for example https://github.com/TwinProduction/gatus

Distributed monitoring systems like Datadog/Grafana for advanced solutions (they have features for logging/tracing/metrics/profiling)
(Synthethic test runs in Datadog at least)
(Some metric prometheus scrapping in grafana)
+Configured alerts obviously in both solutions

Folks, what is the correct way to configure logging? I have multiple modules and some third-party modules that I want to have on different levels. It seems wrong to set it in a dictConfig because I'll have to edit code anytime I need a change in verbosity. Do I put a json file in the repository? Do I set up a bunch of env vars?

it is a normal standard to change logging levels with env vars

enriron.get("library_name","warn")

for your own web app at least

if we have situation that u develop a library on your own... then it is a bit more tricky.
needing just to adhere to std lib logging stuff, and initializing loggers as __name__ of a current file

it will open access for apps to adjust logging based on import path to specific sections of app

in its turn if u develop cli/desktop app, it is not unheard of configuring logging via actually file 😏

That's what I do

I'm developing a library and using it

I suppose I'll just put a logconfig.py somewhere

anyone know the reason for conda installed in a WSL2 not letting install packages in new env but only in base?

Hi everyone,
Has anyone managed to set up OAuth2 with Casdoor in Dify? I'd really appreciate it if you could share your experience or any guidance. Thanks in advance!

Is the logger module that is built into python adequate for production applications? Or do you guys reach for something specific like structlog?

Is the logger module that is built into python adequate for production applications?
yes and no
In average case yes, it is standard to which we adhere.

but not enough for serious production applications. For them we need JSON logger transoformer on top, because all modern logging systems are able to parse json logs and provide full features to logs navigations through that in the simpliest way
https://pypi.org/project/python-json-logger/
Because json logging is compatible with ANY modern distributed monitoring system, which are used for serious bleeding edge production

JSON logging compatible with any modern logging system is the way

Or do you guys reach for something specific like structlog?
it is confusing to see with which modern system it is compatible. i am highly suspicious of it

Otherwise Structured logging / Json logging is the way / logging enriched with plentiful of context regarding its fields. std logging powered by json stuff is pretty much already providing it

Ok, thanks for your response, i'll look into this

I've only briefly read through structlog's docs, but it seemed like a structured logging module

https://grafana.com/blog/2025/02/20/grafana-drilldown-apps-the-improved-queryless-experience-formerly-known-as-the-explore-apps/
As example json logging makes compatible for easier usage with Grafana Loki logs navigation
Both its Explore and new shiny Drilldown interfaces

but you're recommending python-json-logger?