Page MenuHomeSolus

Enhance tooling around ypkg maintenance
Closed, InvalidPublic


The package automation scripts aren't as good as they could be.
Essentially we're dealing with templated files, and a single YAML file.

As an example, we don't attempt to do any real discovery on the tarballs we fetch apart from version/hash.
We have super basic detection of build types, but this is highly restrictive.

We also don't fetch the description/summary from known files such as the .egg-info inside PyPI packages.


New Go based tools to improve this situation, with full scanners and license detection, etc.

Event Timeline

ikey created this task.Aug 5 2016, 5:10 PM

Very much related to the improvements in T46: Enhanced dependency assignment in package builds too

DataDrake triaged this task as Normal priority.Sep 10 2016, 1:15 PM

Hiya ikey,

I started a prototype here, and unfortunately go does not mesh well with the current ypkg package.yml format.

I love go but it tends to be quite brittle 😞 and the ypkg format is very dynamic, which will mean alot of very hacky workarounds.
license - string, or []string
source - has to be []map[string]string instead of map[string]string
rundeps - []string, or []map[string]string, or []map[string][]string

Do you think it would be better too: use the messy workarounds, change the ypkg format, or change the language?

Way ahead of you. I just haven't pushed the code to my fork of ypkg tools

JoshStrobl closed this task as Invalid.Feb 9 2019, 8:25 PM
JoshStrobl added a subscriber: JoshStrobl.

Closing as invalid. Tooling in ypkg 3 will resolve this.

JoshStrobl removed ikey as the assignee of this task.Feb 9 2019, 8:25 PM