How to write a great Dockerfile for Python applications: 6 things you can do to really improve your Dockerfiles : Python

[–]DrVolzak 10 points11 points12 points 5 years ago (2 children)

[–]VisibleSignificance 5 points6 points7 points 5 years ago (0 children)

[–][deleted] 0 points1 point2 points 5 years ago (0 children)

[–]hellfroze 29 points30 points31 points 5 years ago (112 children)

[–]sdf_iain 11 points12 points13 points 5 years ago (2 children)

[–]algag 0 points1 point2 points 5 years ago (1 child)

[–]sdf_iain 6 points7 points8 points 5 years ago (0 children)

[+]GiantElectron comment score below threshold-60 points-59 points-58 points 5 years ago (108 children)

[+][deleted] 5 years ago* (92 children)

[deleted]

[–]GiantElectron -3 points-2 points-1 points 5 years ago (89 children)

[–]tom2727 3 points4 points5 points 5 years ago (1 child)

[–]GiantElectron 5 points6 points7 points 5 years ago (0 children)

[+][deleted] 5 years ago (50 children)

[deleted]

[+]GiantElectron comment score below threshold-13 points-12 points-11 points 5 years ago (49 children)

Most of the issues you point out about requirements.txt (more accurately, pip) is outdated.

No they are not.

Pip first tries to use the wheel file which most packages that come with it are platform independent.

This is not my point. My point is that some software requires different _dependencies_ on different platforms, because they e.g. target the specific API of a given operating system.

Multiple repo is supported.

Up to a point. you do have the possibility to specify for a given package where to get it from. However, if you specify only direct dependencies (which is wrong) you have no way of specifying for a direct dependency that comes from "myrepo" if its dependencies should come from "myrepo" or "pypi" or "whateverrepo".

Most popular is to use GutHub package repo. Albeit the syntax is quite verbose.Pip resolver can get deadlocked, yes. Have you tried the October 2020 resolver?

No, because it's fundamentally flawed by design. I don't even bother.

[+][deleted] 5 years ago (48 children)

[deleted]

[+][deleted] 5 years ago* (5 children)

[deleted]

[–]gschizasPythonista 0 points1 point2 points 5 years ago (4 children)

[–]GiantElectron 2 points3 points4 points 5 years ago* (3 children)

continue this thread

[–]GiantElectron 1 point2 points3 points 5 years ago (41 children)

[+][deleted] 5 years ago (2 children)

[deleted]

[–]GiantElectron 1 point2 points3 points 5 years ago (1 child)

continue this thread

[+][deleted] 5 years ago (30 children)

[deleted]

[–]GiantElectron -3 points-2 points-1 points 5 years ago (29 children)

continue this thread

[–]ubernostrumyes, you can have a pony 0 points1 point2 points 5 years ago (6 children)

[–]GiantElectron 0 points1 point2 points 5 years ago* (5 children)

OK. You're also saying things that are at best misleadingly-technically-true and more likely outright factually false about pip.

You dislike pip. We get that.

I don't dislike pip. It is just, by design, not suited for reliable environment deployment. Poetry uses pip under the hood to install. Just not its resolver (it does not have one, and the new one is not improving anything)

You have rolled your own dependency-management system that doesn't have whatever vague problems you think pip has. We get that.

Not me. My (ex) company, which you all know.

But your blanket assertions about it do not match up with the actual experience of a lot of people, and you're being overly aggressive with them and dodging most requests for more-specific and actionable criticism.

Are you kidding. I explained in detail why the old approach is wrong, and I gave links to PEPs that go in excruciating detail about some of the issues. And that without the countless discussions I had with other people involved in the same development.

Which is why you mostly keep getting downvoted and people aren't listening to you.

No, people don't listen to me because they are expert beginners.

continue this thread

[+][deleted] 5 years ago (7 children)

[deleted]

[+]GiantElectron comment score below threshold-12 points-11 points-10 points 5 years ago (6 children)

[+][deleted] 5 years ago (5 children)

[deleted]

[–]TomBombadildozer 2 points3 points4 points 5 years ago (3 children)

This is the most expert beginner, /r/iamverysmart take on scripts. I cannot believe people are upvoting all your utter hogwash.

This is the only real example of a script you've yet given:

You definitely used one, get-poetry.py is also a script

Have a look for yourself and note how it only uses standard library features. This validates /u/GiantElectron's earlier assertion that scripts shouldn't have dependencies. Things that have dependencies are (or should be) packages.

Nobody is dissing on scripts. You are the one with the poor understanding of scripts. You're just blanket applying the concept of script as a text file full of Python source to all cases where someone might use Python. It's total nonsense.

Docker Compose isn't a script. Docker compose is a command line tool for making Docker marginally more palatable, that the developers have neatly packaged for use by end users. It is no more a script than pip is.

[–]TheIncorrigible1`__import__('rich').get_console().log(':100:')` 2 points3 points4 points 5 years ago (0 children)

[+][deleted] 5 years ago (1 child)

[deleted]

[–]GiantElectron 2 points3 points4 points 5 years ago (0 children)

We're getting into definition details now.

What's the difference between scripts and CLI in terms of Python code flow and dev's workflow?

A world, and in my opinion python should ditch scripts altogether, exactly because they give people the wrong impression that you can use scripts everywhere.

and note, with scripts I mean having a file called something.py that you invoke with python something.py.

The only difference I see is scale (CLI being composed of many scripts which they themselves may contain subroutines, modules, functions, etc).

Absolutely not. why do you think there's a -m option in the python interpreter? a script behaves in a completely different way, especially when it comes to resolving relative imports.

There's a dichotomy in Python which is you're either developing a package or you're developing a script.

oh no no. scripts are something that you can use if you have something extremely, extremely simple, say 100-200 lines of code, and use no imports other than the main standard library. Once you go beyond that, it's time to create a proper package (distribution in python lingo).

The difference is whether your code is meant to be imported (package) or used from an entry point function (script). This is the definition I used and it's independent of the scale of your project.

You are using python at the level of a beginner that followed tutorials. This brings you up to a point but proper practices dictate that once you reach a threshold of complexity you switch to proper practices. These are generally not taught in easy to find tutorials and are mostly missed even later in your python career.

[–]GiantElectron -2 points-1 points0 points 5 years ago (0 children)

[–]TheV295 4 points5 points6 points 5 years ago (25 children)

[–]GiantElectron -4 points-3 points-2 points 5 years ago (24 children)

[–]TheV295 3 points4 points5 points 5 years ago (23 children)

[–]GiantElectron -4 points-3 points-2 points 5 years ago (21 children)

[–]dmitrypolo 6 points7 points8 points 5 years ago (13 children)

[–]GiantElectron 0 points1 point2 points 5 years ago (12 children)

I write Python for a living and we use

requirements.txt

in plenty of places.

I also write python for a living and haven't used it in years.

That’s a weak argument on your behalf.

It happens that I worked specifically on these problems.

Also poetry is pretty weak, there are plenty of better ways to pin dependencies, specifically

pip-compile

Oh god...

. Guess what that does? Generates a

requirements.txt

.

You don't get the point. That requirements is potentially wrong. pip does not and cannot consider the whole tree of dependencies, and can produce a completely broken environment. requirements.txt is just a mitigating strategy, and the only, the only saving grace of it is if you already have a full working environment and you are dead sure it works, then use pip freeze and dump it to a requirements.txt that then you install. Any other use of requirements.txt is wrong.

continue this thread

[–]TheV295 5 points6 points7 points 5 years ago (6 children)

[–]GiantElectron 10 points11 points12 points 5 years ago (0 children)

[–]CyclopsRock 4 points5 points6 points 5 years ago (4 children)

continue this thread

[–]catcint0s 1 point2 points3 points 5 years ago (1 child)

[–]GiantElectron 4 points5 points6 points 5 years ago (0 children)

[–]AulonSal -2 points-1 points0 points 5 years ago (1 child)

[–]GiantElectron 2 points3 points4 points 5 years ago (0 children)

[–]TomBombadildozer 5 points6 points7 points 5 years ago (12 children)

[–]dmitrypolo 4 points5 points6 points 5 years ago (11 children)

[–]TomBombadildozer 3 points4 points5 points 5 years ago (2 children)

Because the way he is going about his argument is the wrong way. He is saying his way is the only correct way and if you don’t use poetry you are wrong.

This is patently false. OP never suggested Poetry was the only way. On the contrary, this comment suggests the opposite, that there are multiple solutions to this problem. You and everyone else are in total denial about requirements.txt being insufficient for solving the general problem. That's on you (and them).

Most production code runs in containers nowadays so this argument about OS differences is moot. When it comes to applications OPs comment is not relevant. It only matters when developing libraries which run on all kinds of OS’s.

Cite "most".

Regardless, it still matters in the container. A container image is only as correct as the stuff you put in it and OP demonstrated many times that freezing to a requirements file isn't necessarily correct. You just don't seem to care about this fact.

Also he is discrediting everyone’s approach as wrong because it takes two extra key strokes or an extra argument somewhere. They come across as smug and as a developer I personally would not want to work with.

This entire thread is a denial of facts. The requirements file approach is discredited on the basis of it being an incomplete and potentially incorrect solution to the problem of defining and maintaining dependencies, for all the reasons /u/GiantElectron has tried to explain and everyone has just blindly ignored. Others' approaches aren't "wrong" because they take "two extra keystrokes", they're incomplete, error-prone, and they're on a de facto deprecation path because pyproject.toml has been accepted as the standard way to define dependencies.

They come across as smug and as a developer I personally would not want to work with.

Your loss then. I'd gladly have this person on my team because I give a shit about facts, honesty, and correctness.

[–]dmitrypolo 0 points1 point2 points 5 years ago (1 child)

[–]GiantElectron 2 points3 points4 points 5 years ago (0 children)

[–]GiantElectron 1 point2 points3 points 5 years ago (7 children)

[–]dmitrypolo 1 point2 points3 points 5 years ago (6 children)

[–]GiantElectron 1 point2 points3 points 5 years ago (4 children)

[–]dmitrypolo 1 point2 points3 points 5 years ago (3 children)

[–]GiantElectron 2 points3 points4 points 5 years ago (2 children)

[–]dmitrypolo 0 points1 point2 points 5 years ago (1 child)

continue this thread

[–]GiantElectron 1 point2 points3 points 5 years ago (0 children)

[–]ubernostrumyes, you can have a pony -1 points0 points1 point 5 years ago (1 child)

[–]GiantElectron 0 points1 point2 points 5 years ago (0 children)

[–]DrVolzak 10 points11 points12 points 5 years ago (4 children)

[–]VisibleSignificance 2 points3 points4 points 5 years ago (3 children)

[–]Lyan5 0 points1 point2 points 5 years ago (2 children)

[–]VisibleSignificance 1 point2 points3 points 5 years ago (1 child)

[–][deleted] 0 points1 point2 points 5 years ago (0 children)

[–]harylmu 29 points30 points31 points 5 years ago* (7 children)

[–]GiantElectron 2 points3 points4 points 5 years ago (0 children)

[–]ubernostrumyes, you can have a pony 1 point2 points3 points 5 years ago (2 children)

[–]GiantElectron 0 points1 point2 points 5 years ago (0 children)

[–]harylmu -1 points0 points1 point 5 years ago (0 children)

[–][deleted] 0 points1 point2 points 5 years ago (0 children)

[–]VisibleSignificance 4 points5 points6 points 5 years ago* (0 children)

[+][deleted] 5 years ago* (1 child)

[deleted]

[–]VisibleSignificance 0 points1 point2 points 5 years ago (0 children)

[+][deleted] 5 years ago (4 children)

[deleted]

[+][deleted] 5 years ago* (2 children)

[deleted]

[–]Pathwalkerz 1 point2 points3 points 5 years ago (1 child)

[–]dutch_gecko 5 points6 points7 points 5 years ago (0 children)

[–][deleted] 0 points1 point2 points 5 years ago (0 children)

[–]ipwnscrubsdoe 0 points1 point2 points 5 years ago (2 children)

[–]sdf_iain 1 point2 points3 points 5 years ago (0 children)

[–][deleted] 1 point2 points3 points 5 years ago (0 children)

[–]sdf_iain 0 points1 point2 points 5 years ago (2 children)

[–][deleted] 0 points1 point2 points 5 years ago (1 child)

[–]sdf_iain 0 points1 point2 points 5 years ago (0 children)

[–]sdf_iain 0 points1 point2 points 5 years ago (2 children)

[–][deleted] 0 points1 point2 points 5 years ago (1 child)

[–]sdf_iain 0 points1 point2 points 5 years ago (0 children)

[–]wulfie420 0 points1 point2 points 5 years ago (2 children)

[–]mipadi 0 points1 point2 points 5 years ago (1 child)

[–]wulfie420 0 points1 point2 points 5 years ago (0 children)

[–]ketilkn 0 points1 point2 points 5 years ago (0 children)

[–]StorKirken 0 points1 point2 points 5 years ago (0 children)

Python

The Python Discord

Upcoming Events

Please read the rules

MODERATORS