[Distutils] If you want wheel to be successful, provide a build server.
Noah Kantrowitz
noah at coderanger.net
Wed May 25 04:08:25 EDT 2016
> On May 25, 2016, at 12:13 AM, Thomas Güttler <guettliml at thomas-guettler.de> wrote:
>
> If you want wheel to be successful, **provide a build server**.
>
> Quoting the author of psutil:
>
> https://github.com/giampaolo/psutil/issues/824#issuecomment-221359292
>
> {{{
> On Linux / Unix the only way you have to install psutil right now is via source / tarball. I don't want to provide wheels for Linux (or other UNIX platforms). I would have to cover all supported python versions (7) both 32 and 64 bits, meaning 14 extra packages to compile and upload on PYPI on every release. I do that for Windows because installing VS is an order of magnitude more difficult than installing gcc on Linux/UNIX but again: not willing to do extra work on that front (sorry).
> What you could do is create a wheel yourself with python setup.py build bdist_wheel by using the same python/arch version you have on the server, upload it on the server and install it with pip.
> }}}
>
> What do you think?
The problems haven't really changed every time someone brings this up. Running untrusted code from the internet isn't impossible (eg. Travis, Heroku, Lambda) but it requires serious care and feeding at a scale we don't currently have the resources for. Until something in that equation changes, the best we can do it try to piggyback on an existing sandbox environment like Travis.
--Noah
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 801 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://mail.python.org/pipermail/distutils-sig/attachments/20160525/004aa655/attachment.sig>
More information about the Distutils-SIG
mailing list