Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Introduce thamos verify command to check lockfile hash #971

Merged
merged 2 commits into from
Jan 6, 2022
Merged

Introduce thamos verify command to check lockfile hash #971

Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
0bda1aa
Add a new command to verify that the lock file is up to date
fridex Dec 20, 2021
aa92277
Introduce thamos verify command to check lockfile hash
fridex Dec 20, 2021
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
71 changes: 71 additions & 0 deletions thamos/cli.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -41,6 +41,7 @@
from thoth.common import cwd
from thoth.common import ThothAdviserIntegrationEnum
from thoth.common import get_justification_link as jl
from thamos.exceptions import ConfigurationError
from thamos.exceptions import NoProjectDirError
from thamos.exceptions import NoRuntimeEnvironmentError
from thamos.config import config as configuration
Expand Down Expand Up @@ -1536,4 +1537,74 @@ def environments_(output_format: str) -> None: # noqa: D412
)


@cli.command("verify")
@click.pass_context
@click.option(
"--runtime-environment",
"-r",
default=None,
metavar="NAME",
envvar="THAMOS_RUNTIME_ENVIRONMENT",
help="Specify runtime environment from which the given package should be removed.",
)
@handle_cli_exception
def verify(runtime_environment: typing.Optional[str]) -> None: # noqa: D412
"""Verify the hash in Pipfile.lock is up-to-date in runtime environments configured.

Examples:

thamos verify

thamos verify --runtime-environment "training"
"""
if configuration.requirements_format != "pipenv":
_LOGGER.error(
"Cannot verify hash of the lock file as the project uses requirements format %r, please switch "
"to 'pipenv' to have the ability to check the lock file hash",
configuration.requirements_format,
)
sys.exit(2)

if runtime_environment:
runtime_environments = [
configuration.get_runtime_environment(runtime_environment)
]
else:
runtime_environments = configuration.list_runtime_environments()

any_error = False
for runtime_environment_config in runtime_environments:
runtime_environment_name = runtime_environment_config["name"]

try:
project = configuration.get_project(runtime_environment_name)
except ConfigurationError:
_LOGGER.error(
"Failed to obtain configuration for runtime environment %r",
runtime_environment_name,
)
any_error = True
continue

if not project.pipfile_lock:
_LOGGER.error(
"No lock file found for runtime environment %r",
runtime_environment_name,
)
any_error = True
continue

if project.pipfile.hash() != project.pipfile_lock.meta.hash:
_LOGGER.error("Pipfile.lock is out-of-date. Run `thamos advise` to update.")
any_error = True
continue

_LOGGER.info(
"Pipfile.lock is up-to-date for runtime environment %r",
runtime_environment_name,
)

sys.exit(any_error is True)


__name__ == "__main__" and cli()