Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Enable to explicitly disallow import of certain external dependencies #535

Closed
janbernloehr opened this issue Jan 12, 2025 · 4 comments · Fixed by #683
Closed

Enable to explicitly disallow import of certain external dependencies #535

janbernloehr opened this issue Jan 12, 2025 · 4 comments · Fixed by #683
Labels
enhancement New feature or request

Comments

@janbernloehr
Copy link

janbernloehr commented Jan 12, 2025
edited
Loading

We often have the usecase where for a certain package we want to disallow imports of an external package foo.

Now to please tach check-external we would have to add all other packages to the dependencies which is cumbersome and requires frequent changes. Instead, we would like to explicitly model the forbidden external import of foo only.
@emdoyle
Copy link
Member

emdoyle commented Jan 17, 2025

Hi @janbernloehr , thanks for raising this. Can you provide a few more details about your use case?

It sounds like you are maintaining multiple Python packages in your repo, are these built and released separately, or do they share an environment?

My assumption about listing dependencies for each package was that every external package would need to be listed there anyway, is this not the case? I might be misunderstanding the workaround you are describing.

@janbernloehr
Copy link
Author

Our usecase is that we have two packages foo and bar in our repo. We would like to prohibit foo from importing tensorflow and bar from importing torch. Instead of having a list of all external dependencies of foo we would rather just add tensorflow to the list of prohibited imports.

@samuelhwilliams
Copy link

I also have this use case and would find it really valuable. In lieu of tach supporting it we might end up using import-linter or similar.

In our case, we want to limit the ability to import from eg sqlalchemy in anything except one of the modules in our codebase, so that all database access goes through a central place.

@emdoyle emdoyle added the enhancement New feature or request label Jan 23, 2025
@emdoyle emdoyle mentioned this issue Feb 3, 2025
Merged
@emdoyle
Copy link
Member

emdoyle commented Feb 5, 2025

@janbernloehr @samuelhwilliams Thanks for your patience here - just coming back to this.

I'm still not sure I understand the behavior you are looking for, so let me sketch out my assumptions:

foo/
    src/...
    pyproject.toml
bar/
    src/...
    pyproject.toml

Since you are using tach check-external, I am assuming that your project looks similar to the above. I am surprised to hear that you have to list dependencies "to please tach check-external", because I would have assumed that each package already must list its dependencies in pyproject.toml so that it can be built. This is the list that check-external will validate against.

In your specific example, I would think that tensorflow would simply not be listed in foo/pyproject.toml, and pytorch would not be listed in bar/pyproject.toml -- tach check-external should immediately do what you want in this scenario.

Could you let me know where I am going wrong here? An example of your project layout and Tach configuration may be helpful.

@emdoyle emdoyle mentioned this issue Mar 12, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Add depends_on_external, cannot_depend_on_external to control external dependencies gauge-sh/tach
3 participants
@janbernloehr @samuelhwilliams @emdoyle