055b396ea2
Merge pull request #1800 from github/dependabot/pip/python-setup/tests/poetry/python-3.8/certifi-2023.7.22
...
Bump certifi from 2022.12.7 to 2023.7.22 in /python-setup/tests/poetry/python-3.8
2023-07-26 13:46:36 +02:00
98d57a1337
Merge pull request #1801 from github/dependabot/pip/python-setup/tests/poetry/requests-3/certifi-2023.7.22
...
Bump certifi from 2022.12.7 to 2023.7.22 in /python-setup/tests/poetry/requests-3
2023-07-26 13:46:20 +02:00
1ba3eaa7d3
Merge pull request #1802 from github/dependabot/pip/python-setup/tests/pipenv/requests-3/certifi-2023.7.22
...
Bump certifi from 2023.5.7 to 2023.7.22 in /python-setup/tests/pipenv/requests-3
2023-07-26 13:46:05 +02:00
126f9c6282
Bump certifi in /python-setup/tests/pipenv/python-3.8
...
Bumps [certifi](https://github.com/certifi/python-certifi ) from 2023.5.7 to 2023.7.22.
- [Commits](https://github.com/certifi/python-certifi/compare/2023.05.07...2023.07.22 )
---
updated-dependencies:
- dependency-name: certifi
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-07-25 16:40:15 +00:00
cfd7e3df84
Bump certifi in /python-setup/tests/pipenv/requests-3
...
Bumps [certifi](https://github.com/certifi/python-certifi ) from 2023.5.7 to 2023.7.22.
- [Commits](https://github.com/certifi/python-certifi/compare/2023.05.07...2023.07.22 )
---
updated-dependencies:
- dependency-name: certifi
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-07-25 16:39:45 +00:00
c974f40fee
Bump certifi in /python-setup/tests/poetry/requests-3
...
Bumps [certifi](https://github.com/certifi/python-certifi ) from 2022.12.7 to 2023.7.22.
- [Commits](https://github.com/certifi/python-certifi/compare/2022.12.07...2023.07.22 )
---
updated-dependencies:
- dependency-name: certifi
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-07-25 16:39:42 +00:00
d34eb386d4
Bump certifi in /python-setup/tests/poetry/python-3.8
...
Bumps [certifi](https://github.com/certifi/python-certifi ) from 2022.12.7 to 2023.7.22.
- [Commits](https://github.com/certifi/python-certifi/compare/2022.12.07...2023.07.22 )
---
updated-dependencies:
- dependency-name: certifi
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-07-25 16:39:37 +00:00
d1a140b28e
python-setup: Fix pipenv (`--keep-outdated` deprecated)
...
Recently released pipenv removed support for `--keep-outdated` flag (see https://github.com/pypa/pipenv/blob/main/CHANGELOG.rst#pipenv-202379-2023-07-09 )
Local testing showed that installation was fine without this 👍
2023-07-12 17:09:00 +02:00
6e92b190d0
Bump requests to 2.31.0
2023-05-23 17:07:30 +01:00
292bb7c0b9
Parameterize check scripts over requests version
2023-05-23 17:07:30 +01:00
5ed1e985c2
python-setup: Fix site-package selection for unix
2023-01-13 14:41:00 +01:00
2f6d17472d
python-setup: Make debug printing more obvious
2023-01-13 11:25:25 +01:00
2649b6603a
python-setup: Fix site-packages selection without pip for Windows
2023-01-13 11:25:25 +01:00
b8107301d2
python-setup: Fix for python2
2023-01-13 11:25:25 +01:00
932b6a98b8
python-setup: Fix path for tests
2023-01-13 11:25:25 +01:00
259993b92a
python-setup: Handle poetry `virtualenvs.options.no-pip = true`
...
Fixes https://github.com/github/codeql-action/issues/1425
2023-01-13 11:25:25 +01:00
e4818d46c4
Remove tests with old certifi dependency
2022-12-20 10:30:38 +00:00
6fec2ab57a
Merge pull request #1427 from github/dependabot/pip/python-setup/tests/poetry/python-3.8/certifi-2022.12.7
...
Bump certifi from 2021.10.8 to 2022.12.7 in /python-setup/tests/poetry/python-3.8
2022-12-08 11:24:01 -08:00
4e81e2933a
Bump certifi in /python-setup/tests/poetry/python-3.8
...
Bumps [certifi](https://github.com/certifi/python-certifi ) from 2021.10.8 to 2022.12.7.
- [Release notes](https://github.com/certifi/python-certifi/releases )
- [Commits](https://github.com/certifi/python-certifi/compare/2021.10.08...2022.12.07 )
---
updated-dependencies:
- dependency-name: certifi
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-12-08 17:36:48 +00:00
bf944d782b
Bump certifi in /python-setup/tests/poetry/requests-3
...
Bumps [certifi](https://github.com/certifi/python-certifi ) from 2021.10.8 to 2022.12.7.
- [Release notes](https://github.com/certifi/python-certifi/releases )
- [Commits](https://github.com/certifi/python-certifi/compare/2021.10.08...2022.12.07 )
---
updated-dependencies:
- dependency-name: certifi
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-12-08 17:36:47 +00:00
8121f62c54
Bump certifi in /python-setup/tests/pipenv/python-3.8
...
Bumps [certifi](https://github.com/certifi/python-certifi ) from 2021.10.8 to 2022.12.7.
- [Release notes](https://github.com/certifi/python-certifi/releases )
- [Commits](https://github.com/certifi/python-certifi/compare/2021.10.08...2022.12.07 )
---
updated-dependencies:
- dependency-name: certifi
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-12-08 16:26:53 +00:00
aba18b82f7
Bump certifi in /python-setup/tests/pipenv/requests-3
...
Bumps [certifi](https://github.com/certifi/python-certifi ) from 2021.10.8 to 2022.12.7.
- [Release notes](https://github.com/certifi/python-certifi/releases )
- [Commits](https://github.com/certifi/python-certifi/compare/2021.10.08...2022.12.07 )
---
updated-dependencies:
- dependency-name: certifi
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-12-08 12:47:50 +00:00
3b0a2f607d
python-setup: Update comment with fully qualified configuration name
2022-12-06 11:37:57 +01:00
27c1438455
python-setup: Apply suggestions from code review
2022-12-06 11:32:21 +01:00
7fc528c3c6
python-setup: Don't allow Poetry to make venv in project
...
I mostly verified this works on my local machine, but did add a sample `poetry.toml` to the tests, so it can be verified from looking at the logs 🤷
2022-12-06 10:41:46 +01:00
caf1c5057b
python-setup: Remove outdated comment
2022-11-29 13:24:10 +01:00
c62445de22
python-setup: rely on new `virtualenv` for venv creation in Ubuntu 22.04
...
Removes the hotfix from https://github.com/github/codeql-action/pull/1257
2022-11-29 11:43:01 +01:00
ff5ca122ed
Merge pull request #1257 from github/rasmuswl/fix-ubuntu22.04-venv-creation
...
python-setup: Fix venv creation in Ubuntu 22.04
2022-09-21 16:27:55 +01:00
32ca2cf500
Apply suggestions from code review
...
Co-authored-by: Henry Mercer <henrymercer@github.com>
2022-09-21 16:06:07 +02:00
8a893ddf18
python-setup: Flush even more
2022-09-21 15:36:13 +02:00
93ba53f2de
add missing spaces
2022-09-21 15:36:13 +02:00
1fa5d72846
python-setup: Fail early if installing for Python 2, and `python2` not available
2022-09-21 14:50:13 +02:00
417059fdb2
Merge pull request #1258 from github/rasmuswl/poetry-v1.2
...
python-setup: Add support for Poetry 1.2
2022-09-21 14:03:27 +02:00
ca8a78d5f3
python-setup: flush at the end of `_check_call`
2022-09-21 10:02:51 +02:00
2264307214
python-setup: change `env` passing
2022-09-21 10:01:57 +02:00
70509c3884
python-setup: Add support for Poetry 1.2
2022-09-19 12:21:43 +02:00
e1ce6e3115
python-setup: Fix venv creation in Ubuntu 22.04
...
Fixes https://github.com/github/codeql-action/issues/1249
2022-09-19 09:49:53 +02:00
5ffcfe95cc
python-setup: Allow newest `virtualenv`
...
Context for previous version is
https://github.com/github/codeql-action/pull/862
Locally, I was able to install `20.15.1` with Python2.
I don't see any reason why python3 version should be restricted.
2022-09-16 20:49:42 +02:00
8c692b37a0
Pin `poetry` to 1.1
2022-08-31 13:35:12 +01:00
8a646279fc
python-setup: Check if `pip` is already installed for Python2
2022-04-22 10:32:29 +02:00
b9577df761
python-setup: refactor Pipenv without lockfile
2022-04-18 11:14:14 -04:00
808c29257b
Support Pipfile without Pipfile.lock
...
As previously written, if codeql finds a `Pipfile`, but no `Pipfile.lock`, it will run `pipenv install` with args that require `Pipfile.lock` to exist. Pipfile will fail with this message:
```
Usage: python -m pipenv install [OPTIONS] [PACKAGES]...
ERROR:: Pipfile.lock must exist to use --keep-outdated!
package installation with pipenv failed, see error above
```
This changeset enables auto_install to work with Pipfile when there is no lock. (Bonus: `--skip-lock` is generally a bit faster.)
2022-04-18 11:14:14 -04:00
077ec096bb
#996 : Fix python_setup/install_tool.sh
...
When the script executed on a runner which does not have python2, script incorrectly execute the code inside the if condition. This script runs using /bin/sh in Ubuntu and cause the problem. Fix for this issue to use different syntax in output redirection.
Issue is reproduced using running the job on ubunutu container. Fix also verified in the action https://github.com/cdivitotawela/codeql-issue/actions/runs/2038007502
2022-03-28 07:23:31 +10:00
3e50d096f8
Force virtualenv version
...
Force the virtualenv version to be 20.11 or less.
The 20.12 version is failing for python 2 right now.
2022-01-01 19:13:10 -08:00
43ea2ce0c9
Remove explicit 2.26.0 version in python tests
...
Also, rename test scripts to indicate the version they are using.
2021-10-14 13:40:15 -07:00
3df217266d
Fix failing python tests
...
The requests module 1.2.3 is no longer compatible with python >=3.10.0.
So, instead use 2.26.0, the most recent version that is compatible with
our supported python versions at the time of this commit.
2021-10-14 12:37:58 -07:00
039625a3ce
Fix the Pip download URL.
2021-03-08 18:27:42 +00:00
bfa9dfe827
Python setup: Fix URL for Python 2.7 pip install
...
This URL changed upstream. Fix it by using the same upstream URL as the LGTM Python image.
We can revisit separately whether to drop the Python 2 pip installation entirely.
2021-01-28 16:52:16 -08:00
3c494fdd7a
Prevent accidental analysis of the `get-pip.py` script.
2020-12-22 14:16:57 +00:00
6156eb9557
Install Python 3 tools before installing Python 2 tools.
2020-12-07 13:59:49 +00:00
Stephan Brandauer
dependabot[bot]
Rasmus Wriedt Larsen
Henry Mercer
Andrew Eisenberg
Edoardo Pirovano
Michael A. Smith
Chaminda Divitotawela
Chris Gavin
Aditya Sharad