janware/jw-pkg
1
Code Pull requests Activity Actions

project.conf: pkg.requires.suse.release -= python3-pyright #3

Merged
Jan Lindemann merged 1 commit from jan/feature/20260608-project-conf-pkg-requires-suse-release-python-pyright into master 2026-06-08 18:53:54 +02:00 AGit
Conversation 0 Commits 1 Files changed 1 +1 -1
Jan Lindemann commented 2026-06-08 16:39:38 +02:00
Owner
Copy link

project.conf: pkg.requires.suse.release -= python3-pyright

Running pyright in a minimal docker container fails because on OpenSUSE python313-pyright tries to dowload packages from the NPM registry. This increases the CI supply chain attack surface inacceptably, so remove pyright from the release prerequisites. That should be enough to remove it from the prerequisites of target check as well and allow it to succeed.

The pyright check machinery itself remains useful, so keep it in place for developers who install python3-pyright manually.

#### project.conf: pkg.requires.suse.release -= python3-pyright Running pyright in a minimal docker container fails because on OpenSUSE python313-pyright tries to dowload packages from the NPM registry. This increases the CI supply chain attack surface inacceptably, so remove pyright from the release prerequisites. That should be enough to remove it from the prerequisites of target check as well and allow it to succeed. The pyright check machinery itself remains useful, so keep it in place for developers who install python3-pyright manually.
project.conf: pkg.requires.suse.release -= python3-pyright
Some checks failed
Standard CI tests / Packaging - Kali Linux (pull_request) Successful in 4m31s
Details
Standard CI tests / Packaging - OpenSUSE Tumbleweed (pull_request) Failing after 2m57s
Details
Standard CI tests / Packaging test - All supported platforms (pull_request) Failing after 0s
Details
f5a767eaf0
 
Running pyright in a minimal docker container gives this error:
  $ pyright
  /usr/bin/npm-default: No such file or directory
  Traceback (most recent call last):
    File "/usr/bin/pyright-3.13", line 6, in <module>
      sys.exit(entrypoint())
               ~~~~~~~~~~^^
    File "/usr/lib/python3.13/site-packages/pyright/cli.py", line 31, in entrypoint
      sys.exit(main(sys.argv[1:]))
               ~~~~^^^^^^^^^^^^^^
    File "/usr/lib/python3.13/site-packages/pyright/cli.py", line 18, in main
      return run(*args, **kwargs).returncode
             ~~~^^^^^^^^^^^^^^^^^
    File "/usr/lib/python3.13/site-packages/pyright/cli.py", line 22, in run
      pkg_dir = install_pyright(args, quiet=None)
    File "/usr/lib/python3.13/site-packages/pyright/_utils.py", line 69, in install_pyright
      node.run(
      ~~~~~~~~^
          'npm',
          ^^^^^^
      ...<5 lines>...
          stderr=subprocess.PIPE if silent else sys.stderr,
          ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
      )
      ^
    File "/usr/lib/python3.13/site-packages/pyright/node.py", line 144, in run
      subprocess.run(node_args, **kwargs),
      ~~~~~~~~~~~~~~^^^^^^^^^^^^^^^^^^^^^
    File "/usr/lib64/python3.13/subprocess.py", line 577, in run
      raise CalledProcessError(retcode, process.args,
                               output=stdout, stderr=stderr)
  subprocess.CalledProcessError: Command '['/usr/bin/npm', 'install', \
  'pyright@1.1.409']' returned non-zero exit status 255.
This means that on openSUSE, python3-pyright tries to pull in packages from the NPM registry. This increases the CI supply chain attack surface inacceptably, so remove pyright from the release prerequisites. That should be enough to remove it from the prerequisites of target check as well and allow it to succeed.
The pyright check machinery itself remains useful, so keep it in place for developers who install python3-pyright manually.
Signed-off-by: Jan Lindemann <jan@janware.com>
Jan Lindemann scheduled this pull request to auto merge when all checks succeed 2026-06-08 16:39:39 +02:00
Jan Lindemann force-pushed jan/feature/20260608-project-conf-pkg-requires-suse-release-python-pyright from f5a767eaf0
Some checks failed
Standard CI tests / Packaging - Kali Linux (pull_request) Successful in 4m31s
Details
Standard CI tests / Packaging - OpenSUSE Tumbleweed (pull_request) Failing after 2m57s
Details
Standard CI tests / Packaging test - All supported platforms (pull_request) Failing after 0s
Details
to 8d174f03bd
All checks were successful
Standard CI tests / Packaging - Kali Linux (pull_request) Successful in 3m17s
Details
Standard CI tests / Packaging - OpenSUSE Tumbleweed (pull_request) Successful in 3m35s
Details
Standard CI tests / Packaging test - All supported platforms (pull_request) Successful in 0s
Details
Standard CI tests / Packaging - Kali Linux (push) Successful in 3m18s
Details
Standard CI tests / Packaging - OpenSUSE Tumbleweed (push) Successful in 3m19s
Details
Standard CI tests / Packaging test - All supported platforms (push) Successful in 0s
Details
2026-06-08 18:46:58 +02:00 Compare
Sign in to join this conversation.
Reviewers
No reviewers
Labels
Clear labels
No items
No labels
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
janware/jw-pkg!3
No description provided.