fix: use virtual environment to resolve externally-managed-environment
Some checks failed
audit / audit (push) Failing after 3s
ci-cd / build (push) Failing after 6s
ci / build (push) Failing after 3s
autofix / fix (push) Failing after 1s
security-scanning / audit (push) Failing after 2s
test / test (push) Successful in 1s
ci-cd / deploy (push) Has been skipped
Some checks failed
audit / audit (push) Failing after 3s
ci-cd / build (push) Failing after 6s
ci / build (push) Failing after 3s
autofix / fix (push) Failing after 1s
security-scanning / audit (push) Failing after 2s
test / test (push) Successful in 1s
ci-cd / deploy (push) Has been skipped
PROGRESS: Python project detected, but hitting PEP 668 restriction Issue: 'externally-managed-environment' - Debian protects system Python Root cause: Modern Python installations prevent system-wide pip installs Solution: Use virtual environment (proper Python best practice) Changes: - Add python3-full to package installation - Create virtual environment: python3 -m venv venv - Activate venv: source venv/bin/activate - Install poetry and dependencies inside venv - Run security tools in isolated environment Updated workflows: - audit.yml: Virtual environment + poetry install + audit - fix.yml: Virtual environment + poetry install + safety fixes - security-scanning.yml: Virtual environment + poetry install + security scans Expected results: - Virtual environment created and activated - Poetry installed without system restrictions - Dependencies installed in isolated environment - Security tools (safety, bandit) working properly - All workflows should complete successfully This follows Python best practices and resolves PEP 668 restrictions while maintaining the nuclear fix for workspace control.
This commit is contained in:
@@ -46,7 +46,7 @@ jobs:
|
|||||||
if ! command -v python3 >/dev/null 2>&1; then
|
if ! command -v python3 >/dev/null 2>&1; then
|
||||||
echo "Installing Python 3..."
|
echo "Installing Python 3..."
|
||||||
apt-get update
|
apt-get update
|
||||||
apt-get install -y python3 python3-pip python3-venv
|
apt-get install -y python3 python3-pip python3-venv python3-full
|
||||||
fi
|
fi
|
||||||
|
|
||||||
if ! command -v pip >/dev/null 2>&1; then
|
if ! command -v pip >/dev/null 2>&1; then
|
||||||
@@ -57,6 +57,15 @@ jobs:
|
|||||||
echo "Python version: $(python3 --version)"
|
echo "Python version: $(python3 --version)"
|
||||||
echo "Pip version: $(pip --version)"
|
echo "Pip version: $(pip --version)"
|
||||||
|
|
||||||
|
echo "=== VIRTUAL ENVIRONMENT ==="
|
||||||
|
# Create and use virtual environment
|
||||||
|
python3 -m venv venv
|
||||||
|
source venv/bin/activate
|
||||||
|
|
||||||
|
echo "Virtual environment activated"
|
||||||
|
echo "Python in venv: $(python --version)"
|
||||||
|
echo "Pip in venv: $(pip --version)"
|
||||||
|
|
||||||
echo "=== PYTHON DEPENDENCIES ==="
|
echo "=== PYTHON DEPENDENCIES ==="
|
||||||
if command -v poetry >/dev/null 2>&1; then
|
if command -v poetry >/dev/null 2>&1; then
|
||||||
echo "Poetry found, installing dependencies..."
|
echo "Poetry found, installing dependencies..."
|
||||||
|
|||||||
@@ -44,7 +44,7 @@ jobs:
|
|||||||
if ! command -v python3 >/dev/null 2>&1; then
|
if ! command -v python3 >/dev/null 2>&1; then
|
||||||
echo "Installing Python 3..."
|
echo "Installing Python 3..."
|
||||||
apt-get update
|
apt-get update
|
||||||
apt-get install -y python3 python3-pip python3-venv
|
apt-get install -y python3 python3-pip python3-venv python3-full
|
||||||
fi
|
fi
|
||||||
|
|
||||||
if ! command -v pip >/dev/null 2>&1; then
|
if ! command -v pip >/dev/null 2>&1; then
|
||||||
@@ -52,6 +52,15 @@ jobs:
|
|||||||
python3 -m pip install --upgrade pip
|
python3 -m pip install --upgrade pip
|
||||||
fi
|
fi
|
||||||
|
|
||||||
|
echo "=== VIRTUAL ENVIRONMENT ==="
|
||||||
|
# Create and use virtual environment
|
||||||
|
python3 -m venv venv
|
||||||
|
source venv/bin/activate
|
||||||
|
|
||||||
|
echo "Virtual environment activated"
|
||||||
|
echo "Python in venv: $(python --version)"
|
||||||
|
echo "Pip in venv: $(pip --version)"
|
||||||
|
|
||||||
echo "=== PYTHON DEPENDENCIES ==="
|
echo "=== PYTHON DEPENDENCIES ==="
|
||||||
if command -v poetry >/dev/null 2>&1; then
|
if command -v poetry >/dev/null 2>&1; then
|
||||||
echo "Poetry found, installing dependencies..."
|
echo "Poetry found, installing dependencies..."
|
||||||
|
|||||||
@@ -44,7 +44,7 @@ jobs:
|
|||||||
if ! command -v python3 >/dev/null 2>&1; then
|
if ! command -v python3 >/dev/null 2>&1; then
|
||||||
echo "Installing Python 3..."
|
echo "Installing Python 3..."
|
||||||
apt-get update
|
apt-get update
|
||||||
apt-get install -y python3 python3-pip python3-venv
|
apt-get install -y python3 python3-pip python3-venv python3-full
|
||||||
fi
|
fi
|
||||||
|
|
||||||
if ! command -v pip >/dev/null 2>&1; then
|
if ! command -v pip >/dev/null 2>&1; then
|
||||||
@@ -52,6 +52,15 @@ jobs:
|
|||||||
python3 -m pip install --upgrade pip
|
python3 -m pip install --upgrade pip
|
||||||
fi
|
fi
|
||||||
|
|
||||||
|
echo "=== VIRTUAL ENVIRONMENT ==="
|
||||||
|
# Create and use virtual environment
|
||||||
|
python3 -m venv venv
|
||||||
|
source venv/bin/activate
|
||||||
|
|
||||||
|
echo "Virtual environment activated"
|
||||||
|
echo "Python in venv: $(python --version)"
|
||||||
|
echo "Pip in venv: $(pip --version)"
|
||||||
|
|
||||||
echo "=== PYTHON DEPENDENCIES ==="
|
echo "=== PYTHON DEPENDENCIES ==="
|
||||||
if command -v poetry >/dev/null 2>&1; then
|
if command -v poetry >/dev/null 2>&1; then
|
||||||
echo "Poetry found, installing dependencies..."
|
echo "Poetry found, installing dependencies..."
|
||||||
|
|||||||
Reference in New Issue
Block a user