Migrate to pyproject.toml based build (leveraging PEP 517/518/621)
#9166
Labels
Comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Checklist
for similar or identical enhancement to an existing feature.
for existing proposed enhancements.
to find out if the same enhancement was already implemented in the
main branch.
(If there are none, check this box anyway).
Related Issues and Possible Duplicates
Related Issues
setuptools>= v72 removessetuptools.command.test#9157 could have been avoided automatically by doing this earlier.setup.py, there is no reason to switch.Possible Duplicates
Brief Summary
I was surprised to hear that Celery was affected by the recent Setuptools issue, since it's pure Python. Although wheels are available, many users who may have chosen to build from source anyway would have been affected. (The same problem also occurred with Requests.) At any rate, a
setup.pyfile should be completely unnecessary for building a wheel for a pure Python sdist in any normal circumstance. Storing metadata as data inpyproject.tomlis cleaner, simpler and more secure. The project already has apyproject.tomlfile but currently it's only used to store configuration for dev tools.Design
Add a PEP 621-compliant
projecttable topyproject.tomlto represent the project metadata currently represented as keyword arguments tosetup. For the dynamically-determined metadata (which currently comes from parsing a source file manually), use a[tool.setuptools.dynamic]table. Optionally use[build-system]to specify a Setuptools version.Architectural Considerations
None
Proposed Behavior
Users who build a Celery sdist will no longer needlessly be exposed to the risks associated with running arbitrary code from a
setup.pyfile, nor to the risk of future Setuptools versions causing other problems withsetup.pycontents due to deprecations/removals.Proposed UI/UX
No changes.
Diagrams
N/A
Alternatives
None
The text was updated successfully, but these errors were encountered: