On 2/19/19 7:04 PM, Raphael Groner wrote:
Hi,
maybe you already noticed, there's a project called pipreqs that parses python code
for import statements. We've already a review request:
https://bugzilla.redhat.com/show_bug.cgi?id=1665749
Although, I doubt in general that any automagic with dependency generators brings a huge
benefit in the long run. In case of python projects, I see sometimes conditional
dependencies that enable optional features by awareness of any existance of a library,
e.g. SecretStorage that parses for alternative desktops and optional password storage.
Further, mostly there are up to 5 dependencies to note but sometimes 2 to ignore anyways.
Yes, automagic generators don't work in the long run. Requirements are
always better listed explicitly.
However, for most Python projects they *are* listed explicitly -- in the
Python package metadata. And there are efforts upstream to make this
metadata more usable for automation.
Currently, that metadata needs to be copied, by hand, to RPM
BuildRequires. That's what a generator can automate.