1.5.0 broke installation of dependencies from .tar.gz URIsΒ #3131
Description
π bug report
Affected Rule
This may be caused by something in python/private/pypi/index_sources.bzl.
Commenting out .tar.gz in _KNOWN_EXTS appears to be a workaround for .tar.gz archives.
Is this a regression?
Yes, this problem doesn't occur in 1.4.1.
I've confirmed that this occurs in 1.5.0 and 1.5.1.
Description
1.5.0 (or one of its release candidates) broke installation of dependencies from .tar.gz URIs.
This could also be occurring for .zip URIs, but I haven't confirmed if this is the case.
π¬ Minimal Reproduction
With the following requirements.txt:
--index-url https://pypi.org/simple
uri @ https://github.com/a-khabarov/uri/archive/b5af5b273e8ad182da3326569499d6b40be6341f.tar.gz \
--hash=sha256:62db978313e289f7c83914454c46d50e1755857d41400ba196fd01533302c7f6
Calling
pip.parse(
hub_name = "hub_name_pip",
python_version = "3.13",
requirements_lock = "//requirements.txt",
)
produces a PIP repository that has version 2.0.1 of the uri package installed from PyPI (https://pypi.org/project/uri/2.0.1/).
This is not correct, as https://github.com/a-khabarov/uri/archive/b5af5b273e8ad182da3326569499d6b40be6341f.tar.gz should be installed instead.
π₯ Exception or Error
π Your Environment
Operating System:
Linux
Output of bazel version:
Bazelisk version: development
Build label: 8.1.1
Build target: @@//src/main/java/com/google/devtools/build/lib/bazel:BazelServer
Build time: Tue Feb 25 18:50:42 2025 (1740509442)
Build timestamp: 1740509442
Build timestamp as int: 1740509442
Rules_python version:
1.5.1
Anything else relevant?