Skip to content

Migrate project towards cutting edge 2025 tooling and methodology #305

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 3 commits into
base: master
Choose a base branch
from
Open

Migrate project towards cutting edge 2025 tooling and methodology #305

wants to merge 3 commits into from

Conversation

@fkromer
Copy link
Contributor

@fkromer fkromer commented Nov 22, 2025

  • restructure project to enable clean Python library builds
  • replace poetry with uv
  • pyproject.toml
    • added state of the art dev tools (test framework, static analysis, type checking)
    • single source of package build
    • single source of Python dependencies (requirements.txt files generated from it)
  • fix and extend contribution docs
  • remove obsolete files
  • (backwards compatible Dockerfile adjustments... Dockerfile setup still not working, adding a devcontainers Dockerfile would make more sense anyways I guess... Dockerfile for report and diagram generation are usually maintained by pytm users due to "own" container security analysis tools)
  • (Makefile setup not tested... is obsolete as soon as devcontainer Dockerfile is available anyways I guess)

@fkromer fkromer requested a review from izar as a code owner November 22, 2025 19:53
@fkromer
Copy link
Contributor Author

fkromer commented Nov 22, 2025

Heading towards world domination @izar 😉

@fkromer
Copy link
Contributor Author

fkromer commented Nov 22, 2025

Merging #299 later on will be straightforward.

fkromer
fkromer commented Nov 24, 2025
View reviewed changes
pyproject.toml
requires = ["uv_build>=0.9.10,<0.10.0"]
build-backend = "uv_build"

[tool.uv.build-backend]
Copy link
Contributor Author

@fkromer fkromer Nov 24, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The data contained in src/pytm/images and threatlib/threats.json needs to be considered as explicit data still potentially.

@fkromer fkromer mentioned this pull request Nov 24, 2025
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@izar izar Awaiting requested review from izar izar is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@fkromer