Example Python Package (EPP) provides example utility functions.
Install the example-python-package the package:
pip install example-python-packageThe package, by default, exposes top level functionality of several top-level classes that can be imported to perform utility based functions. These include:
Multiplier: For multiplying numbers.
To use the utilities, simply import the desired class and call the exposed method i.e.
from example_python_package import Multiplier
utility: Multiplier = Multiplier()
# > 6
utility.multiply([3,2])The following section contains information useful for developers.
The following commands need to be in-order when setting up the repository for the first time.
-
Install project dependencies for local development:
pip install -e ".[dev,test]" -
Install the pre-commit hooks to automatically format and lint your code before commit:
pre-commit install
Remember to select the correct Python interpreter if using Visual Studio Code with cmd + shift + P > Python: Select Interpreter.
It is also suggested that developers install the recommended extensions found in extensions.json.
Note: it is also possible to setup virtual environments using pyenv.
Use black . to automatically fix code according to the opinionated formatting style.
While type hinting doesn't normally provide any added benefit at runtime using a combination of mypy's static typing analysis and the @typechecked decorator from typeguard we can greatly improve type safety both locally and during runtime. It is also best practice to use type hinting as it can help developers better understand methods etc. at a glance and can further allow IDEs to provide better suggestions / warnings if something is unlikely to work though static code analysis.
Commenting is an important step to help developers pickup where others have left off, this repository describes each method through a combination of class/method docstrings and in-line comments around any potentially confusing business logic i.e.:
def foo(foo: Dict[str, int]) -> Dict[str, int]
"""Main method for foo.
Args:
foo (bar): an object of type Bar to process.
Returns:
List[Bar]: a list of processed Bar objects.
"""
.
.
.
# build the newline character array by joining newlines characters of length N (distance between paragraphs)
newlines = ["\n" * newline_characters for newline_characters in number_of_newlines]
.
.
.
return [Bar()]All tests can be ran by using the test script - this will set up a virtual environment and install needed dependencies.
If users want to manually run the tests, install the required dependencies using pip install -e ".[dev]" and then refer to each respective testing section below.
Note: additional permissions may need to be granted to the scripts.
Run pylint linting:
pylint ./example_python_packageOnce ran, the generate linting reports can be found here.
Note: because pylint cannot create directories itself, on clone of the repository the /bandit directory will have an empty .report placeholder file.
Run mypy static code type checking:
mypy .Once ran, reporting will be viewable in the terminal.
Run pytest tests:
pytestOnce ran, the generated coverage reports can be found here. To view the report in interactive mode, right click -> Show Preview on the index.html file or run the server start script.
Run Bandit static vulnerability reporting:
bandit -v -r ./example_python_package -f json -o reports/bandit/report.jsonOnce ran, the generated JSON report can be found here.
Note: because bandit cannot create directories itself, on clone of the repository the /bandit directory will have an empty .report placeholder file.
docker run --rm --name sonarqube -p 9000:9000 sonarqube:latest
Once an image is made, Trivy scanning can be ran with:
docker run --rm -v /var/run/docker.sock:/var/run/docker.sock -v $HOME/Library/Caches:/root/.cache/ aquasec/trivy:latest image <image>Once the version and other functional changes have been merged to master, and the commit tagged, the package needs to be uploaded to the PyPI repository:
- Locally run the (build script)[./.sh/build] with
sh ./.sh/buildto build the package under the./distdirectory - all dependencies will be installed. - Push the build artifacts to the PyPI repository using:
python -m twine upload --verbose -r PyPI dist/*.- Note: this requires a
.pypircfile to be setup following the example file in the home directory so the user is not prompted for their username & password each time.- Username: your email.
- Password: your https://pypi.org/ password.
- Alternatively the command
python -m twine upload --verbose --repository-url https://pypi.org/ dist/*can be used to push files using the same information as described above. - Note: if during the upload process see errors like urllib3 v2.0 only supports OpenSSL 1.1.1+ are observed, the installed Python version will need to be reinstalled and recompiled with updated OpenSSL libraries:
- Uninstall the current Python version, if using pyenv simply uninstall the version i.e.
pyenv uninstall 3.8.10- for other installs you'll need to completely uninstall Python from the EC2 instance.- Note: if using pyenv this will only half-uninstall all currently installed pyenvs - to completely remove them (to be able to recreate them post-Python update) navigate to ~/.pyenv/versions/ and remove them with
rm -rf.
- Note: if using pyenv this will only half-uninstall all currently installed pyenvs - to completely remove them (to be able to recreate them post-Python update) navigate to ~/.pyenv/versions/ and remove them with
- Remove the current OpenSSL library with
sudo yum remove openssl. - Reinstall the OpenSSL libraries with
sudo yum install openssl11 openssl11-devel. - Reinstall Python, recreate virtual environments if using pyenv, and reinstall project dependencies.
- Retry the upload, if correctly updated twine should now push the package build to PyPI.
- Uninstall the current Python version, if using pyenv simply uninstall the version i.e.
- Note: this requires a
- Confirm that the new version of example-python-package has been uploaded to PyPI as expected.
Note: additional permissions may need to be granted to the scripts.