Skip to main content

Validate minimum dependency environments according to xarray's policy scheme

Project description

xarray-minimum-dependency-versions

Check that the minimum dependency versions follow xarray's policy rules.

[!NOTE] Be aware that at the moment there is no public python API, so there are no stability guarantees.

Policy files

Before we can validate environments we need to create a policy file (named e.g. policy.yaml). This allows us to specify the conda channels, the platforms we want to check on, the actual support windows, any overrides, packages that are not supposed to be checked, and allowed violations.

These windows are checked according to xarray's policy, that is, a version can be required as soon as it is at least N months old. As opposed to a fixed support window this means we can never end up requiring a one-month old dependency (or being able to drop all existing versions) for packages with infrequent releases.

For example:

channels:
  - conda-forge
platforms:
  - noarch
  - linux-64
policy:
  # policy in months
  # Example is xarray's values
  packages:
    python: 30
    numpy: 18
  default: 12
  overrides:
    # override the policy for specific packages
    package3: 0.3.1
  # these packages are completely ignored
  exclude:
    - package1
    - package2
    - ...
  # these packages don't fail the CI, but will be printed in the report as a warning
  ignored_violations:
    - package4

If there are no packages with overrides, exclude, or ignored_violations, you can set them to an empty mapping or sequence, respectively:

  ...
  overrides: {}
  exclude: []
  ignored_violations: []

channels

The names of the conda channels to check. Usually, conda-forge.

platforms

The names of the platforms to check. Usually, noarch and linux-64 are sufficient.

policy

The main policy definition. packages is a mapping of package names to the number of months, with default specifying the default for packages that are not in packages.

Any package listed in ignored_violations will show a warning if the policy is violated, but will not count as an error, and it is possible to force a specific version using overrides.

Usage

With the policy file, we can check environment files. There are currently two kinds supported: conda environment definitions as yaml files, and pixi environments.

Check also minimum-versions --help and minimum-versions validate --help.

conda

To validate a conda environment file, run:

minimum-versions validate --policy ./policy.yaml path/to/env1.yaml

or with an explicit prefix

minimum-versions validate --policy ./policy.yaml conda:path/to/env1.yaml

We can also validate multiple files at the same time:

minimum-versions validate --policy .../policy.yaml .../env1.yaml .../env2.yaml

pixi

To validate pixi environments, we need to specify the manifest-path (usually either pyproject.toml or pixi.toml):

minimum-versions validate --policy ./policy.yaml --manifest-path pixi.toml pixi:test-env

where name in pixi:<name> is the name of the environment.

Again, we can validate multiple environments at once:

minimum-versions validate --policy ./policy.yaml --manifest-path pixi.toml pixi:test-env1 pixi:test-env2

time travel support

To check how validation would look at a certain point in time, use the --today option:

minimum-versions validate --policy ./policy.yaml ./env1.yaml --today 2025-10-01

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

xarray_minimum_dependency_policy-2.0.1.tar.gz (11.4 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

File details

Details for the file xarray_minimum_dependency_policy-2.0.1.tar.gz.

File metadata

File hashes

Hashes for xarray_minimum_dependency_policy-2.0.1.tar.gz
Algorithm Hash digest
SHA256 3119336217c0fb31c47c1c5e2358f7322f0593c8d715fc2573fbcc31102519e4
MD5 f3fd25fa2289629939c87217df861547
BLAKE2b-256 8bcdd3825793131ef565b3ec00f4e22057dc2ee4ee908a271ed2c40d0486e177

See more details on using hashes here.

Provenance

The following attestation bundles were made for xarray_minimum_dependency_policy-2.0.1.tar.gz:

Publisher: pypi.yml on xarray-contrib/minimum-dependency-versions

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file xarray_minimum_dependency_policy-2.0.1-py3-none-any.whl.

File metadata

File hashes

Hashes for xarray_minimum_dependency_policy-2.0.1-py3-none-any.whl
Algorithm Hash digest
SHA256 75bf4799c5b5c2d5840765873a415a6e7fde07ae45f16f0062b15ed34f7e3e2f
MD5 08cf2bc1225fb65da9cff262c22fc992
BLAKE2b-256 84025a0b634df4397b82d59d15927ad2f13493048cefc84861151646ac974b7e

See more details on using hashes here.

Provenance

The following attestation bundles were made for xarray_minimum_dependency_policy-2.0.1-py3-none-any.whl:

Publisher: pypi.yml on xarray-contrib/minimum-dependency-versions

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page