jherland
commented
1 year ago PR #93 should take care of the first two tasks here.
Open jherland opened 1 year ago
jherland
commented
1 year ago PR #93 should take care of the first two tasks here.
This has already been added to
real_projects, but I'm only getting around to analyze it now...import requests,from requests.adapters import ...,from tests.testserver.server import ..., etc.exctract_importsshould map out which modules/packages are available from the files that are being parsed, and skip/ignore these imports.tests/conftest.py), FD will reportBaseHTTPServerandSimpleHTTPServeras external imports, even though these were part of the stdlib before Python 3!:Another case of this that uses
StringIO/cStringIOcan be found intests/compat.pysetup.pydoes not pass literal data structures viainstall_requiresandtests_require. Instead they indirect via simple lists. This is the first step on the ladder that starts with a fully staticsetup.pythat we can already parse/interpret, and a fully dynamicsetup.pythat we cannot possibly make sense of unless we execute it (which is a security risk).requirements-dev.txtfile that we do not parse.setup.pymentions PySocks, which should be imported assocks. That said, I cannot actually find that it is imported by therequestscode. This might be an actual unused dependency...docs/requirements.txtlistssphinxas a declared dependency. This is never imported in the code, but is a tool that is run (e.g. via./docs/Makefile) to generate documentation. FD reports this as an unused dependency, despite it clearly being part of the docs workflow inrequests. This is an ecample of the general problem that not all dependencies are (meant to be) imported.These are the issues I've found so far. There will probably be a couple more as we dig further.