Open mindw opened 4 years ago
Hi @mindw , unless I am missing something I don't see an issue here, there should be no expectation that their minor versions would line up, they are different projects and minor versions don't correspond to each other.
Hi @KaibaLopez,
Thank you for taking the time for answering, this may be somewhat of a corner case :)
There is no expectations about version lining up. There is an expectation that when a minor version of a dependency is changed, so does the minor version of aws-cli. For example:
Without this, it is impossible to pin both aws-cli and boto3 to their compatible minor versions as in the above example: 'awscli<1.19
and 'boto3<1.13'.
@KaibaLopez 1.18.77 again bumped botocore to 1.17.0 without bumping the major version. boto3 has: https://github.com/boto/boto3/commit/64a5052571b9e20b1fb65a94083e7822630f55d1
It would be great if awscli would use the same versioning policy as boto3.
@KaibaLopez I'm seeing the exact same problem as well, this is causing errors to show in our configuration management which has never happened before for years of using boto3 and awscli.
im seeing same problem here
At least for awscli 1.21.0 both botocore & boto3 got a minor version bump as well. Tx!
I think this is a feature request rather than a bug. It also looks like there is some overlap with https://github.com/aws/aws-cli/issues/5563. @mindw can you confirm if that issue covers what you're asking for here?
I think this is a feature request rather than a bug. It also looks like there is some overlap with #5563. @mindw can you confirm if that issue covers what you're asking for here?
This feature
is so frustrating...
I have in my requirements.txt
:
awscli==1.22.80
boto3==1.21.25
Dependabot creates two PRs for each dependency, but one for boto3
will fail because of the recent changes for awscli
:
The conflict is caused by:
awscli 1.22.80 depends on botocore==1.24.25
boto3 1.21.26 depends on botocore<1.25.0 and >=1.24.26
Can you revert that last change and use >=
instead of ==
? Just like boto3
is doing?
It's a shame we have failing builds because of that.
‼️ Working workaround ‼️ My requirements have now following order:
boto3==1.21.26
awscli==1.22.81
And my build is now using: cat aws_requirements.txt | xargs -n 1 pip3 install --no-cache-dir
So now both dependencies can be updated separately and builds will not fail. Of course I wouldn't recomend leaving only one dependency not-in-sync with the other. It's only a workaround for Dependabot and its failing builds.
We've opened https://github.com/aws/aws-cli/issues/6854 to start discussing aligning versions of the CLI and Botocore. If anyone has feedback on this proposal, we'll be measuring interest based on the number of :+1: and :-1: responses we get.
This should bring the two versions in sync so we can better manage this going forward. The goal is to simplify the reasoning process of how versions pair. Note though that it won't strictly solve the conflict problem. The CLI has a requirement that needs a strict pin on Botocore, unlike boto3 where we have some more flexibility.
The safest option for users who need both Boto3 and the CLI on one system is to isolate the CLI in a virtualenv, or another containment mechanism, to ensure there aren't conflicts for Botocore.
Confirm by changing [ ] to [x] below to ensure that it's a bug:
Describe the bug Unable to satisfy dependencies when pinning awscli, boto3 & botocore minor versions. EA, the below
setup.cfg
snippet causes dependents to fail pkg_resource dependency check:SDK version number 1.18.50+
Platform/OS/Hardware/Device Linux/macos/windows
To Reproduce (observed behavior) The dependency error can be reproduced by running the below install command.
aws
cli still works. But any python package with the above requirements will have its cli scripts fail as later.Expected behavior Installation success, dependant cli unaffected.
Logs/output
Additional context
Previously, every time a minor botocore version was changed, so did awscli. Boto3 still maintains this practice. But AWS cli failed to do so for the past 2 minor botocore version changes.